Google OAuth-2 how to ask user for a password on each login? -


i need ask user password each time using google oauth. there option have used "max_auth_age", stops working. there replacement option. if not - please suggest can submit "feature request" google restore feature. thanks.

upd have read possible duplicate topic , tried use max_age instead max_auth_age. did not help.

p.s know main idea of oauth2 not use passwords prompts, customer requirement. afraid person, not allowed use system can have access on shared computer if forgot logout gmail.

from view of point of security, that's problem not ask password when user try login again...try imagine doing logout web app , leave pc/laptop/tablet/smartphone alone...and keep on imagining has sensible information app, such personal data, or control iot inside home! else can enter account inside web app doing 1 or 2 clicks. that's real security problem!

facebook oauth2 signing allows developers select "reauthentication" option apps, when user selects login again, asked password again. that's natural , correct matter point of view of security.

from point view of users , security, should enough logout. you, developer, should provide secure logout users. problem that, @ present day, can't provide secure logout users using oauth through sites google or twitter, example... :-(

best regards! bcm


Comments

Post a Comment

Popular posts from this blog

searchKeyword not working in AngularJS filter -

i writing app using angularjs on front end. want search through table word/field; 1 search box everything. according article here: http://hello-angularjs.appspot.com/searchtable can use filter: searchkeyword this. this code, , not working expected. <label>search: <input ng-model="searchkeyword"></label> <table ng-repeat="post in posts | orderby: sort | filter: searchkeyword"> <tr> <td> {{index(post)}} </td> <td> {{post.title}} </td> <td> {{post.author}} </td> <td> {{post.content}} </td> <td> {{post.date | date: "d/m/yyyy"}} </td> </tr> </table> what should do? thank you try this: controller $scope.posts = [ {title:'title one', author:'author one', content: 'content one'}, {title:'title two', author:'author two', content: 'cont...
Read more

sequelize.js - Sequelize: sort by enum cases -

i have model ( article ) field (the name type ) of type enum('source', 'translated') , return 1 article ordered type field. source articles should returned before translated articles. like: article.findone(order: [ { type: [ 'source', 'translated' ] } ]); unfortunately there appears no built-in solution sorting enums. instead have sort by case , couldn't find documentation on how sequelize. what conventional approach here? sorting case hard in sequelize, sort field (the second answer in linked post) should possible: order: sequelize.fn('field', sequelize.col('type'), 'source', 'translated') it's supported mysql far know though
Read more

user interface - how to replace an ongoing process of image capture from another process call over the same ImageLabel in python's GUI TKinter -

i trying use following code create interactive gui changes color-space(hsv, rbg, grayscale etc) on event of button click. display opencv video in tkinter using multiprocessing being new python having problems multiprocessing , attempts on making gui change it's color space on button clicks hangs entire system. on it's implementation highly appreciated. thankyou. below code: import cv2 pil import image,imagetk import tkinter tk import numpy np multiprocessing import process , queue def quit_it(root,process): root.destroy() process.terminate() def black_andwhite(root,process): process.terminate p=process(target=capture_image, args=(5,queue, )) p.start() root.after(0, func=lambda: update_all(root, image_label, queue)) def update_image(image_label, queue): frame = queue.get() = image.fromarray(frame) b = imagetk.photoimage(image=a) image_label.configure(image=b) image_label._image_cache = b root.update() def update_all(root...
Read more