Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Issue #3240] Write docs for API authentication logic #3329

Merged
merged 3 commits into from
Dec 20, 2024
Merged

[Issue #3240] Write docs for API authentication logic #3329

merged 3 commits into from
Dec 20, 2024

Conversation

chouinar
Copy link
Collaborator

Summary

Fixes #3240

Time to review: 10 mins

Changes proposed

Added documentation for the authentication logic

Context for reviewers

Hopefully covered most of the useful auth details, please let me know if anything isn't clear or should have more detail

doug-s-nava
doug-s-nava approved these changes Dec 20, 2024
View reviewed changes
Copy link
Collaborator

@doug-s-nava doug-s-nava left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

✅ ✅ ✅ ✅

documentation/api/authentication.md
## Logout
The logout endpoint will log out the session associated with the passed-in token.

It does this by setting the `is_valid` boolean to False.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not directly related, but curious if there's been a decision about how often to clean out session related tables

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Haven't had a discussion, I'd argue that it would be good to keep sessions for at least a few weeks for debugging purposes. Unless we're getting into the tens of millions, I wouldn't see much concern for performance.

Maybe something like 6 months? When we launch this, we'll get a better idea of how many sessions we're maintaining and go from there probably

@chouinar chouinar merged commit c4fab20 into main Dec 20, 2024
2 checks passed
@chouinar chouinar deleted the chouinar/auth-docs branch December 20, 2024 20:18
doug-s-nava pushed a commit that referenced this pull request Dec 30, 2024
@chouinar @doug-s-nava
[Issue #3240] Write docs for API authentication logic (#3329)
c559be8 
## Summary
Fixes #3240

### Time to review: __10 mins__

## Changes proposed
Added documentation for the authentication logic

## Context for reviewers
Hopefully covered most of the useful auth details, please let me know if
anything isn't clear or should have more detail
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@doug-s-nava doug-s-nava doug-s-nava approved these changes

@mdragon mdragon mdragon approved these changes

@acouch acouch Awaiting requested review from acouch acouch is a code owner

@andycochran andycochran Awaiting requested review from andycochran andycochran is a code owner

@btabaska btabaska Awaiting requested review from btabaska btabaska is a code owner

@coilysiren coilysiren Awaiting requested review from coilysiren coilysiren is a code owner

@widal001 widal001 Awaiting requested review from widal001 widal001 is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Write documentation for API auth logic
3 participants
@chouinar @mdragon @doug-s-nava