Passwordless for Aktion
Implement Magic Link authentication for Aktion's white-labeled portal, replacing username/password with passwordless flow.
Scope:
- Aktion white-labeled portal only (not main Astrata Portal)
Tasks
| Task | Description |
|---|---|
| Generate and Validate Magic Link Tokens | Create a JWT-based token generation and validation service for magic link authen... |
| Implement Magic Link Authentication Flow | Complete passwordless auth flow for Aktion portal. Update login form (email only... |
| Add Rate Limiting for Magic Link Requests | Implement Redis-based rate limiting on magic link request endpoint. Limit to 5 r... |
| Create Email Delivery Interface | Create email service abstraction supporting two transports: SQS queue or HTTP PO... |
| Design Magic Link Email Templates | Create Jinja2 email templates (magic-link-login) in email service repo for "po... |
| Send User Creation Notifications | Send welcome email notification when admin creates user account via UI. Use sepa... |
| Configure Per-Organization Auth Settings | Allow organizations to override token expiration and session timeout with global... |
| Log Authentication Attempts for Audit | Add comprehensive audit logging for authentication attempts. Log successful logi... |
| Update User Management UI for Passwordless Auth | Update user management to support magic link authentication. Adding user require... |
| Remove Password Authentication from Aktion | Disable password-based auth for Aktion portal. Remove password fields, login for... |
| Test Cross-Browser and Mobile Compatibility | Manual testing of complete auth flow across browsers and email clients. Develop ... |
| Assign Organizations Automatically by Domain | Enable automatic organization assignment when creating users. Match user email d... |
| Create Email Service HTTP Endpoint | Add HTTP endpoint to email service to accept POST requests with same JSON payloa... |
| Configure Email Service Default Settings | Add support for configurable default email settings via environment variables. A... |
| Create Aktion Email Base Template and Namespace | Create a new "aktion" namespace in the email service with a base email template ... |
| Create and Execute Testing Plan | Create comprehensive testing plan document for Aktion passwordless auth feature.... |
| Bind Magic Link to Requesting Device | Ensure magic links can only complete authentication on the device/browser that i... |
| Passwordless Auth Testing Plan |