Users and login

[josh-chamberlain]

Context

This is boilerplate login, reinventing zero wheels.

should be followed by #158

Requirements

• Feature/api auth #4
• create a new login page for the app
  • https://data-sources.pdap.io/login
  • email and password form fields, Log in button and Create account button
  • upon successful login, show a page which says something like "You're logged in!"
  • allow people to create a new user login, via simple form
  • allow people to reset their password via email without admin intervention
• by default users have the same permissions as the front end (public)

first permission will be given to admins, #163

There's probably at least one existing library for this.

[josh-chamberlain]

@mbodeantor this is not next up, yet, but not too far off. Just passing to you for refinement

[mbodeantor]

The current login get user endpoint will need the api key functionality to be split out into a separate endpoint so that it returns a success or fail on match. We will also need to add a "role" column to the user table which this endpoint should also return. If the role is "admin" the front end should show the edit button. For now we can update the roles in the database manually.

In addition will need to add an update password endpoint for the reset password functionality.

[mbodeantor]

Backend work for this is finished: #196