[Noisebridge-discuss] Access control & Safety, both personal and general space.

Shannon Lee shannon at scatter.com
Thu Feb 9 11:46:10 PST 2012


Jof, it seems like what we want here is something webby that takes a JSON
struct containing an auth guess, something like:

{"phone_number":"123456789"} or {"rfid_match_code":"1234567"}

and returns

{"access":"granted"} or {"access":"denied"}

that way we can abstract access so that any device or service could be used
to auth against this access service.

obviously we don't want the whole internet to be able to attempt auth
against that, so we need an API key (which might just consist of of an HTML
basic/ssl token).

And there'll need to be an easy way for people to add people and stuff;  a
web form?  An iphone app?

Does this sound workable?

--S


On Thu, Feb 9, 2012 at 10:35 AM, Jonathan Lassoff <jof at thejof.com> wrote:

> On Thu, Feb 9, 2012 at 10:06 AM, rachel lyra hospodar
> <rachelyra at gmail.com> wrote:
> > <3 this discussion.
> >
> > I want to point out that decentralization and mistrust of power in the
> hands
> > of individuals reccomends against putting control in the hands of
> treasurer,
> > an individual. I <3 Kelly but she may want to do something else with her
> > time eventually, and be replaced with someone who turns out to be an evil
> > despot.
>
> Well, I think the reference here was to *some* officer of
> Noisebridge-the-org, like the treasurer. It is the human in that
> position who makes the determination as to who is and is not a member.
>
> --j
>



-- 
Shannon Lee
(503) 539-3700

"Any sufficiently analyzed magic is indistinguishable from science."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.noisebridge.net/pipermail/noisebridge-discuss/attachments/20120209/ee6d4d97/attachment.htm 


More information about the Noisebridge-discuss mailing list