New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

password less login #4

Open

Deshke opened this issue May 11, 2015 · 1 comment

Labels

Deshke commented May 11, 2015

The Idea behind this is to get rid of all passwords for any backend user and deploy a token based authentication process.

/papaya/login.php page only gets a user field.
user can only input his username/email
papaya sends a mail/text msg(whatsoever) with a login token
- token is valid for x hours
login token
- can be a mail with "click here for login to http(s)://domain.tld/papaya/
- can be a token (15 chars) to input

Deshke added the enhancement label

Author

Deshke commented May 11, 2015

update: token in mail/text msg should be only valid for a short amount of time (5 - 10 min)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment