User Story
As a bitshares node operator I'd like to give the users the best experience.
In terms of api_logins the user is required to verify himself. Therefore the bitshares blockchain offers the api_access_info. This file is loaded on startup of the node. To add a new user and make the change available, the node has to be restarted. That is pretty inconvenient. It would be great if the change could take place dynamically.
More specifically some sort of signal, which is emitted when a user tries to log in. The signal destination can then be a plugin for example, we call that external_service, which then verifies the user and logs him in.
The external_service itself is not part of the issue.
Impacts
Describe which portion(s) of BitShares Core may be impacted by your request. Please tick at least one box.
P.S.
My thoughts on this and a prototype implementation, which just serves testing purposes for myself can be found here: #2051
In my example I used the external_service only for the acquisition of the api_access_info and tried to reuse as much code as possible, hence I reused the login_api::login code, to avoid duplicate code. Maybe it's a good idea to make the verification also through the external_service, which would allow for custom verification schemes.
User Story
As a
bitshares node operatorI'd like to give the users the best experience.In terms of
api_loginsthe user is required to verify himself. Therefore thebitshares blockchainoffers theapi_access_info. This file is loaded on startup of the node. To add a new user and make the change available, the node has to be restarted. That is pretty inconvenient. It would be great if the change could take place dynamically.More specifically some sort of signal, which is emitted when a user tries to log in. The signal destination can then be a plugin for example, we call that
external_service, which then verifies the user and logs him in.The
external_serviceitself is not part of the issue.Impacts
Describe which portion(s) of BitShares Core may be impacted by your request. Please tick at least one box.
P.S.
My thoughts on this and a prototype implementation, which just serves testing purposes for myself can be found here: #2051
In my example I used the
external_serviceonly for the acquisition of theapi_access_infoand tried to reuse as much code as possible, hence I reused thelogin_api::logincode, to avoid duplicate code. Maybe it's a good idea to make the verification also through theexternal_service, which would allow for custom verification schemes.