Feature #4644
Allow user to view and clear its api keys
0%
Description
Right now the user cannot see if he has api keys and cannot clear/renew them. This is an issue as a user should be in control of what kind of access is granted for him. So far I can see the api key being used for the following services:
- rss, web services
Possible implementation:
- in /main/social/search.php add a my_keys entry
- in my keys list key entries for the user - excluding the real value, possibly leaving out the dokeos key
- provide buttons to remove/renew the keys
One question is whether we want to allow user to renew all keys.
As a side note the api_key table would benefit from a few additional fields:
- created_date
- validity end date
- description
History
Updated by Yannick Warnier over 8 years ago
Updated by - Target version set to 1.9.2
Users should be able to update their API keys if the extra field has been configured as such in the extra-fields management screen.
I think this should go to 1.9.1, otherwise we will never finish 1.9 :-)
Updated by Laurent Opprecht
Updated by Julio Montoya over 8 years ago
Updated by - Target version changed from 1.9.4 to 2.0
If by api keys you mean some special user "extra fields", we don't ship the those fields with chamilo 1.9.0.
Moving to 1.10 because this task needs some DB changes.