Good day all,
I had an idea that I will try to investigate soon enough and I am not entirely sure where to start but, let me explain what I am trying to achieve.
I am using Inline Editing for a number of actions and I would love to extend the inline tag to take one more parameter:
confirmation_required='1'
Which if set, it would prevent saving the change and send an email to the one making the change(these areas are only available to administrators) with a code and they would have to copy that code and input it to resume the save. This is prompted by a Zero Trust Security Policy that I am implementing and would play a nice role into it.
An even better solution would be if the email would contain a link and the change would only take place if that link is:
• Open from a mobile device;
• The user authenticates to couch from the mobile device and approves the change;
• Link is available only for 5 minutes.
But I do expect that the second option would take quite a bit of coding to do but would allow couch to have a sort of a two factor authentication that can be placed also upon regular login as well as certain changes.
But one step at a time
Did someone experiment with something like this?
I had an idea that I will try to investigate soon enough and I am not entirely sure where to start but, let me explain what I am trying to achieve.
I am using Inline Editing for a number of actions and I would love to extend the inline tag to take one more parameter:
confirmation_required='1'
- Code: Select all
<cms:inline_edit 'intro_title' confirmation_required='1' />
Which if set, it would prevent saving the change and send an email to the one making the change(these areas are only available to administrators) with a code and they would have to copy that code and input it to resume the save. This is prompted by a Zero Trust Security Policy that I am implementing and would play a nice role into it.
An even better solution would be if the email would contain a link and the change would only take place if that link is:
• Open from a mobile device;
• The user authenticates to couch from the mobile device and approves the change;
• Link is available only for 5 minutes.
But I do expect that the second option would take quite a bit of coding to do but would allow couch to have a sort of a two factor authentication that can be placed also upon regular login as well as certain changes.
But one step at a time
Did someone experiment with something like this?