Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | |||
| projects:sso [2025/07/09 16:33] – Magic link code samp20 | projects:sso [2025/07/11 12:51] (current) – samp20 | ||
|---|---|---|---|
| Line 26: | Line 26: | ||
| ==== Keyfob/card login ==== | ==== Keyfob/card login ==== | ||
| - | This will be a slight change to our current login method, requiring you to enter your email first before scanning your keyfob/ | + | This will be a slight change to our current login method, requiring you to enter your email first before scanning your keyfob/ |
| An additional security measure will be required to ensure these keyfob logins only come from the Hackspace network. For now an IP allowlist should be sufficient, along with a global lockout if a significant number of keyfob login attempts are spotted. It is recognised that IP addresses can theoretically be spoofed, but quite difficult in practice. The global lockout would be a nuclear countermeasure in the extremely rare instance someone does figure this out. | An additional security measure will be required to ensure these keyfob logins only come from the Hackspace network. For now an IP allowlist should be sufficient, along with a global lockout if a significant number of keyfob login attempts are spotted. It is recognised that IP addresses can theoretically be spoofed, but quite difficult in practice. The global lockout would be a nuclear countermeasure in the extremely rare instance someone does figure this out. | ||