Define additional config data in QR Code

[cornelinux]

We need to define additional config data for the QR Code:

• number of tokens
• color set...
• logo...

[nilsbehlen]

What should happen if a user already has one (or more tokens) and scans a token with the restriction set to one token only?
Keep the tokens or delete the already existing tokens?
Either way the ability to add more tokens should be locked after the one with restriction,
but then there needs to be a way to "unlock" the restriction again

[cornelinux]

Great question...

1. The token refuses to enroll
2. the token forces the user to delete the other tokens: "The new token is restricted to be the only token in your app. You can only enroll the new token, by deleting the old tokens. Do you want me to delete the old tokens?"
3. Simply enroll the token and do not allow to enroll any further tokens.

[nilsbehlen]

so far there are the addional parameters:
(it's either true, or can be left out, since the default is false anyway)

• ?pin=true
• ?maxnum= (number of tokens allowed in the list (unfinished))
• ?2step=true (unfinished)

[nilsbehlen]

the restriction feature (?maxnum) is removed until there is a real use for that