flask-oidc icon indicating copy to clipboard operation
flask-oidc copied to clipboard
verified publisher icon fedora-infra

Feature Proposal: Email verification

Open winston-yallow opened this issue 1 year ago • 3 comments

It seems like there is no way to enforce email verification since OIDC_REQUIRE_VERIFIED_EMAIL was deprecated.

I propose to add a decorator require_verified_email() that only grants access if the mail is verified.

winston-yallow avatar Feb 06 '24 15:02 winston-yallow

To be clear, it is possible to manually check session['oidc_auth_profile']['email_verified'], but the proposal would integrate this better into a typical flask workflow.

winston-yallow avatar Feb 06 '24 15:02 winston-yallow

Yeah, it sounds reasonable, could you write the PR? I'll review it.

abompard avatar Jul 04 '24 09:07 abompard

@winston-yallow can you explain the flow? what happens when the email is not verified? a redirect? a 403?

davidtavarez avatar Nov 11 '24 19:11 davidtavarez