Skip to content
GitLab
Projects Groups Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
  • Sign in
  • G git-eca-rest-api
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 15
    • Issues 15
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 1
    • Merge requests 1
  • Deployments
    • Deployments
    • Releases
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • Code review
    • Insights
    • Issue
    • Repository
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Commits
  • Issue Boards
Collapse sidebar
  • Eclipse FoundationEclipse Foundation
  • IT
  • APIs
  • git-eca-rest-api
  • Issues
  • #72
Closed
Open
Issue created Jul 19, 2022 by Martin Lowe@malowe🇨🇦Maintainer

Add endpoint to check a users ECA status

This endpoint would use some of the underlying mechanisms to validate the ECA status, given an email address. We should avoid returning the associated user as this could be used to fish for information that is considered GDPR data internally. Instead, we will return empty responses with different codes indicating the state.

  1. Status code 200 will represent a user found for email with signed ECA
  2. Status code 403 will represent a user found without a signed ECA
  3. Status code 404 will represent no found user with given email.

The endpoint for this will be /git/eca/lookup?email=dummy@test.org. This will give us the ability to also use this endpoint to validate by username as well if we want, as well as github username. These combined mechanisms should give us the greatest flexibility when checking ECA status in a secure and anonymous way.

Assignee
Assign to
Time tracking

Copyright © Eclipse Foundation, Inc. All Rights Reserved.     Privacy Policy | Terms of Use | Copyright Agent