commit misc notes

author: Bryan Newbold <bnewbold@robocracy.org> 2018-09-20 20:22:22 -0700
committer: Bryan Newbold <bnewbold@robocracy.org> 2018-09-20 20:25:36 -0700
commit: 1e9e851c89ff773cf878f1e466b061c7217903a8 (patch)
tree: 831541b88718b11c31397c80994e2672515538c8 /notes/auth_thoughts.txt
parent: 182413ad4946d715aabf67c396d688fbb5d1c0eb (diff)
download: fatcat-1e9e851c89ff773cf878f1e466b061c7217903a8.tar.gz
fatcat-1e9e851c89ff773cf878f1e466b061c7217903a8.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/notes/auth_thoughts.txt b/notes/auth_thoughts.txt
index 4782dd0f..ba19f4c2 100644
--- a/notes/auth_thoughts.txt
+++ b/notes/auth_thoughts.txt
@@ -42,6 +42,12 @@ Backend:
 - auth_epoch timestamp column on editor table
 - lock editor by setting auth_epoch to deep future
 
+Deploy process:
+- auto-create root (admin), import-bootstrap (admin,bot), and demo-user
+  editors, with fixed editor_id and "early" auth_epoch, as part of SQL. save
+  tokens in env files, on laptop and QA instance.
+- on live QA instance, revoke all keys when live (?)
+
 TODO: privacy policy
 
 fatcat API doesn't *require* auth, but if auth is provided, it will check
@@ -52,3 +58,4 @@ support oauth2 against:
 - git.archive.org
 - github
 ? google
+
author	Bryan Newbold <bnewbold@robocracy.org>	2018-09-20 20:22:22 -0700
committer	Bryan Newbold <bnewbold@robocracy.org>	2018-09-20 20:25:36 -0700
commit	1e9e851c89ff773cf878f1e466b061c7217903a8 (patch)
tree	831541b88718b11c31397c80994e2672515538c8 /notes/auth_thoughts.txt
parent	182413ad4946d715aabf67c396d688fbb5d1c0eb (diff)
download	fatcat-1e9e851c89ff773cf878f1e466b061c7217903a8.tar.gz fatcat-1e9e851c89ff773cf878f1e466b061c7217903a8.zip