lies.exposed icon indicating copy to clipboard operation
lies.exposed copied to clipboard

Published 20 hours ago verified publisher icon lies-exposed

API Authentication

Open ascariandrea opened this issue 4 years ago • 0 comments

API - and admin - need to be authenticated.

I would use a jwt strategy and add the authentication layer to all the Create/Update/Delete endpoints of API, leaving Read endpoints public.

To achieve this we need a new table in DB for admins that stores:

  • first name
  • last name
  • email
  • password

And they can login from admin-web services to access the admin dashboard

ascariandrea avatar Feb 06 '21 09:02 ascariandrea