[Fetch] What's stopping us from using the Fetch API configuration to support this? #39

wparad · 2024-04-09T11:26:49Z

After thinking about this a lot more, it seems like there is a real opportunity here to move the configuration into the fetch api for browsers. This is going to be api requests, and fetch will likely ultimately be used here, fetch could just take in a new parameter for session management:

await fetch('/sessions', {
  method: 'POST',
  sessionConfiguration: {
    type: 'TOTP / TPM / HOTP',
    expiry: 60000,
    metadata: {
       sessionIdentifier: 'hello'
    }
  }
});

And then for each subsequent request, fetch could inject in a header with the signature automatically if configured:

await fetch('/sessions', {
  method: 'POST',
  sessionConfiguration: {
    enabled: true
  }
});

Or whatever, seems like an easy solution here, what am I missing?

The text was updated successfully, but these errors were encountered:

kmonsen · 2024-12-23T22:56:44Z

I think you would need to provide some more details for a good response to this request.

kmonsen added the Has initial answer Has at least one answer from admins label Dec 23, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Fetch] What's stopping us from using the Fetch API configuration to support this? #39

[Fetch] What's stopping us from using the Fetch API configuration to support this? #39

wparad commented Apr 9, 2024

kmonsen commented Dec 23, 2024

[Fetch] What's stopping us from using the Fetch API configuration to support this? #39

[Fetch] What's stopping us from using the Fetch API configuration to support this? #39

Comments

wparad commented Apr 9, 2024

kmonsen commented Dec 23, 2024