Follow up to #1125. A special key is a key with attached adhoc capability token to access API which otherwise is not available for general use.
User story is something like:
Site admin (and only site admin) should be able to go to a special page, where one can enter username for whom key is generated, expiration date for a key (having sensible default like today + 1 day or 7 days), capability name as a string, and optional capability discriminator as a string. After submitting this information, site admin is presented with a key value, which is passed to intended user via separate means. There also should be page to present all currently active (non-expired) special keys.
Log in to post a comment.