opentok-meet
opentok-meet copied to clipboard
aullman
Basic Auth for accessing /archives and /rooms
Right now /archives and /rooms are publicly accessible. Shouldn't be available to everyone, should add some auth. http://blog.modulus.io/nodejs-and-express-basic-authentication
Another advantage of authentication (if done with FB/Google) is that we can populate publisher names and photos.
This is specially important for people that is using meet for audio only meetings (I know some). They find frustrating not to know who is talking some times.
should the person who starts the archive get to choose what a basic auth password is for GETing it later?
for rooms, would there be a universal shared password?
i like the idea of supporting github/facebook/twitter/google for auth. but only optionally.
This ticket was actually about the /rooms and /room/archives endpoints which list all of the rooms and all of the archives in a room. I thought that we should add some kind of auth for that so that anyone can't just go there.
But I also like the idea of optional auth using FB/Google and also optional private rooms where only certain people are allowed to join.
Sorry, I missunderstood this ticket. I created #108 for the "social authentication"