If we can somewhat link a mail to something, we could offer password a recovery feature.
Some ideas:
- Auth Grove (potentially circular if user uses Nasqueron mail to login)
- Belgian eID
- A backup mail address
If we can somewhat link a mail to something, we could offer password a recovery feature.
Some ideas:
Development moratoire
Per T1771, we're currently considering implementing Keycloak as a reference identity management and SSO login product.
This product exposes a LDAP, OIDC (OpenID Connect) and SAML capabilities to authenticate users and applications. It seems to solve our main problems.
From there, it's not clear what we do with Auth Grove:
While T1771 evaluation is ongoing, a moratoire covers any development activities related to Auth Grove, with the obvious exception of security issues.
This moratoire cover fully or partly this task.