At some point we need to have a hook out to an approval process to "approve" API keys. For example, I apply, but we want to vet users, or integrate into a marketing campaign and BANT qualify before we approve their use of our APIs.
When there is an approval process for an API key, there needs to be an async model to get the API Key back to the user. This should support two approaches: 1. Email the user the key (in an email that uses a template that can be modified) 2. The user should also be able to login and see their key. This should also apply to the case where they are issued immediately. In fact I think it might be better to always assume this is async. So if the approval is automatic, I would just get the email straight away. Paul -- Paul Fremantle CTO and Co-Founder, WSO2 OASIS WS-RX TC Co-chair, VP, Apache Synapse UK: +44 207 096 0336 US: +1 646 595 7614 blog: http://pzf.fremantle.org twitter.com/pzfreo [email protected] wso2.com Lean Enterprise Middleware Disclaimer: This communication may contain privileged or other confidential information and is intended exclusively for the addressee/s. If you are not the intended recipient/s, or believe that you may have received this communication in error, please reply to the sender indicating that fact and delete the copy you received and in addition, you should not print, copy, retransmit, disseminate, or otherwise use the information contained in this communication. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions.
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
