@dev.mohe/projektwahl-lib v0.0.1
projektwahl-pwa
WORK-IN-PROGRESS Diese Software kann eine Projektwahl verwalten, wie sie beispielsweise für eine Projektwoche benötigt wird.
Design
Normal login flow: login -> get a session in form of a certificate logout / block -> invalidate session / revoke certificate
Initial setup: ask the server to exchange your username and password for a certificate that is signed by the server for a specific period of time
Use that certificate to ask any peer for the list of projects / users / ... Use the certificate to update values (recommended to connect to a server for data consistency guarantee)
A user should be able to have multiple certificates
Revoking should be possible?
Best way would be to do all communication using WebRTC because then you would only need one technology. But probably WebSockets or http2 requests need to be used for client server communication
Maybe use
https://identity.foundation/working-groups/identifiers-discovery.html https://w3c-ccg.github.io/did-primer/ https://raw.githubusercontent.com/WebOfTrustInfo/rwot1-sf/master/final-documents/dpki.pdf
Permissions
server signs you which permissions you have (project leader, user)
5 years ago