Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Require edgeryders_research_consent=true when creating accounts on edgeryders.eu via API #216

Open
tanius opened this issue Sep 23, 2019 · 0 comments
Assignees

Comments

@tanius
Copy link
Member

tanius commented Sep 23, 2019

We now have an API for remote creation of Discourse accounts on our SSO provider site (docs).

Currently, the parameter must be true if provided, but there is no obligation to provide it. That allows to create accounts on edgeryders.eu and to get an Admin API key for such an account, without the user having given consent to research use of the content.

This is a problem because there is no consent funnel when creating content using the Admin API key. So we can either create such a consent funnel for the API, or only hand out the Admin API key after the user gave consent to research. I prefer the latter 😆

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants