✨ QRCode API #148
✨ QRCode API #148
Conversation
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
rezk2ll
force-pushed
the
qr-code-api
branch
from
1b5fbd9
to
595a883
Compare
|
Hi @rezk2ll : which access_token do you display here ? Remember that an access token owns to only one device |
|
hi @rezk2ll , what kind of token in QR code? |
|
hi @rezk2ll , we want to generate QR code ourselves. Which endpoint we need to use? |
Hello @hoangdat , the endpoint is /_twake/v1/qrcode More details on the swagger docs here It requires the lemonldap cookie to be present in the request. The endpoint is available in staging |
it is an access_token obtained from matrix using the /_matrix/client/v3/login endpoint |
But we only need the token, we want to generate our QR code from our self, to put it to our component view |
The endpoint returns a ready SVG image that can be rendered freely on the front end. do you want an endpoint to return only a new access_token? like |
|
hi @guimard , what do you think it is security issue if access_token stay in QR code? |
|
Hi, there is a risk when QR code is displayed. |
feature
Prerequisites
the user must be connected
the web auth cookie must be included in the request: ie
lemonldapexample:
closes linagora/twake-on-matrix#1764
demo
API using Postman
qrcode decode using mobile ( without mobile magic link )
Screenrecorder-2024-10-08-11-55-51-892.mp4