These are chat archives for waterlock/waterlock

21st
Dec 2014
Markus Padourek
@Globegitter
Dec 21 2014 20:09
@davidrivera thanks for the invite to the waterlock repositories. Would certainly love to help make this a great, thorough authentication module.
David Rivera
@duhruh
Dec 21 2014 20:46
@Globegitter yea man i've decided to make this project an official community project @/all feel free to contribute as much as you want just please be sure to follow the contribution guidelines
@/all other than that feel free to add/refactor/test/work or bugs/work on features at will all i ask is please be vocal about anything you are going to attempt this is a team effort guys :smile: communication is key!
Kris Williams
@kriswill
Dec 21 2014 20:48
heya
David Rivera
@duhruh
Dec 21 2014 20:48
@a
Kris Williams
@kriswill
Dec 21 2014 20:48
I’ll have to take a closer look at this stuff.
David Rivera
@duhruh
Dec 21 2014 20:50
@/all as I'm sure many of you will understand I will still withhold publish rights to npm until i can trust you guys not to break the release branch :laughing:
@/all but please if you want something published talk about it in here and i'll be sure it gets pushed
Kris Williams
@kriswill
Dec 21 2014 20:57
I recently started working on using OAuth2 as my local auth. I used this project as a starting point.
The trick is to adapt the session stuff to JWT.
perhaps, a waterlock-oauth2-provider project would be useful for this type of thing.
I like the idea of following a standard for authentication, treating local authentication using the same protocols as 3rd party oauth2.
@Globegitter on the Ember side of the equation, the simple-auth-oauth2 addon does the trick.
David Rivera
@duhruh
Dec 21 2014 21:19
@kriswill I like the idea of making local auth the same as other auth methods, I originally made it just as a way that users can get off the ground quick
though i suppose with good enough documentation we can do whatever we want now
take a stab at it! Just be sure to not work on the master branch
also let me know if you want me to create a repo for the waterlock-oauth2 lib if you or anyone else wants to try that
Martin Genev
@mgenev
Dec 21 2014 21:24
hi, i'll be happy to help make waterlock a great solution for authenticating the SANE stack
David Rivera
@duhruh
Dec 21 2014 21:26
@mgenev sounds awesome let me know if you want me to create a new repo so you can start hacking :+1:
Kris Williams
@kriswill
Dec 21 2014 21:27
what I’ve been leaning towards lately, is having a separate application for the oauth2 provider. I’d like to prevent the monolithic design tendancy of putting all of the responsibility with one app.
David Rivera
@duhruh
Dec 21 2014 21:28
Oh yea of course, I misunderstood you, I thought you meant an oauth2 client. Yea the oauth2 provider might be a little outside the scope of this application
though i believe devise does it, if there is enough of a community push for it then I suppose we can look at it again
Kris Williams
@kriswill
Dec 21 2014 21:32
I think JWT to authorize requests to the API is perfect. However, I’m not so sure an API application should additionally perform oauth2 provider functions. I think that’s best for a sibling app.
but I’m not sure how well I can microservice parcel with sails. How to share models and configuration between applications. This obviously is not a direct concern of waterlock, but is architecturally relevant to a more resillient system.
David Rivera
@duhruh
Dec 21 2014 21:35
Yes i ran into the same issue, there are one of two ways i have found to solve it.
  1. You can use relative pathing, but in this case you would have to require the library not to be installed globally, this is what waterlock does.
  1. you can attach your configs to a global variable
2*
though you would run into issues when those values are not defined
Kris Williams
@kriswill
Dec 21 2014 21:37
sails 0.11.0 is out, just now.
David Rivera
@duhruh
Dec 21 2014 21:37
you would need to find a way fail gracefully
Kris Williams
@kriswill
Dec 21 2014 21:38
the solution I had in mind was using etcd, and subscribing to keys for change events, to restart applications.
it’s something that is on by default in coreos/deis setups.
Kris Williams
@kriswill
Dec 21 2014 22:29
@davidrivera nice video on the homepage. One improvement would be to either increase your terminal/editor font sizes, or restrict the video capture area to 1080p.