You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: rfc/oauth-login.md
+2
Original file line number
Diff line number
Diff line change
@@ -47,6 +47,8 @@ The OAuth callback URL might be `/oauth/github/callback`. The handler for which
47
47
48
48
When claiming the delegation the client will create a local account using the `did:mailto` in the attestation.
49
49
50
+
Note: In order to ensure the request to the OAuth callback is legitimate, the primary verified email address mentioned above MUST be obtained by making an authorized request to the OAuth provider using the `code` communicated to the callback (paired with the OAuth client secret).
51
+
50
52
## Appendix
51
53
52
54
The idea for this is to allow a _trial_ plan to be assumed by new logins. The OAuth callback will, before invoking `access/claim` create a customer in the system, and set their plan to `did:web:trial.storacha.network`.
0 commit comments