sirius icon indicating copy to clipboard operation
sirius copied to clipboard
verified publisher icon nordprojects

Support OAuths other than Twitter

Open LemmaEOF opened this issue 10 months ago • 3 comments

Twitter is...not in a great state nowadays. In the interest of keeping the platform running, supporting alternative OAuths might be a good idea.

LemmaEOF avatar Jan 31 '25 07:01 LemmaEOF

Agreed! If we can do it in a way that unifies accounts between the old way and the new way that'll be the trick.

The obvious way to do that is with email adresses. I don't recall if the database stores them...

joerick avatar Jan 31 '25 08:01 joerick

The user model is like this-

https://github.com/nordprojects/sirius/blob/main/sirius/models/user.py#L23-L33

So we have no email addresses for existing users. That means the twitter auth can't go away, else we lock users out of their accounts, with no way to do the 'forget password' dance.

The one thing we can do is add another auth mechanism (probably I'd prefer email/password, but it could be a different oauth), and let users have multiple ways to log in.

joerick avatar Jan 31 '25 08:01 joerick

Yeah, I've seen a good few platforms that allow you to bind multiple OAuths (or email/password or passkey or such) to one account after you've already signed up with one method. That definitely seems like the best route to go.

LemmaEOF avatar Jan 31 '25 08:01 LemmaEOF