0.0.1 • Published 5 years ago

@dev.mohe/projektwahl-lib v0.0.1

Weekly downloads
-
License
AGPL-3.0-or-later
Repository
github
Last release
5 years ago

projektwahl-pwa

WORK-IN-PROGRESS Diese Software kann eine Projektwahl verwalten, wie sie beispielsweise für eine Projektwoche benötigt wird.

Design

Normal login flow: login -> get a session in form of a certificate logout / block -> invalidate session / revoke certificate

Initial setup: ask the server to exchange your username and password for a certificate that is signed by the server for a specific period of time

Use that certificate to ask any peer for the list of projects / users / ... Use the certificate to update values (recommended to connect to a server for data consistency guarantee)

A user should be able to have multiple certificates

Revoking should be possible?

Best way would be to do all communication using WebRTC because then you would only need one technology. But probably WebSockets or http2 requests need to be used for client server communication

Maybe use

https://identity.foundation/working-groups/identifiers-discovery.html https://w3c-ccg.github.io/did-primer/ https://raw.githubusercontent.com/WebOfTrustInfo/rwot1-sf/master/final-documents/dpki.pdf

Permissions

server signs you which permissions you have (project leader, user)

https://github.com/node-webrtc/node-webrtc