Add an /auth/status endpoint #10

toolness · 2015-04-01T23:51:50Z

GET /auth/status

This CORS-only call has the same strict cross-origin restrictions as /auth/persona and returns a JSON blob similar to it too. However, instead of taking a Persona assertion, it simply uses the session cookie of the request to glean information about the current user. It returns no content if no user is currently logged in.

On its own, this isn't very useful, but if we add OAuth2 endpoints for id.webmaker.org (see also #7) and allow users to log in through it, then /auth/status can be used by the Teach site to get login info for the current user, once a user has been redirected back to it at the end of the authorization flow.

The text was updated successfully, but these errors were encountered:

toolness self-assigned this Apr 1, 2015

toolness closed this as completed in 0adf596 Apr 2, 2015

This was referenced Apr 3, 2015

[WIP] oauth2 basics -- do not merge yet mozilla/learning.mozilla.org#445

Closed

Redirect to teach-api for login/logout flow mozilla/learning.mozilla.org#576

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add an /auth/status endpoint #10

Add an /auth/status endpoint #10

toolness commented Apr 1, 2015

Add an /auth/status endpoint #10

Add an /auth/status endpoint #10

Comments

toolness commented Apr 1, 2015