Skip to content

WIP: Public Meetings API

Derrick Liu requested to merge svdsa/membership_api:public-meetings-api into dev

@DSASanFrancisco/portal-members

A follow up for !306 (merged) - this PR will actually open up the meetings API.

A few things to do in this regard:

  • remove auth requirement for API
  • remove auth requirement for front end

Future considerations

  • friendly meeting links (e.g. https://members.siliconvalleydsa.org/attend/april-branch-meeting, which we can shorten using a regex-capable redirector to https://sv-dsa.org/attend/april-branch-meeting).
  • adding a checkbox to meetings like Zoom for generating a random value as a "password" for each meeting. When visiting the meeting link, the server will check the query parameter for unauthenticated members. This can help prevent arbitrary meetings sign ins by discovery-attacking our meeting ID.

I have:

  • Included a summary of the changes
  • Linked all relevant Trello tickets to this request
  • Linked all relevant GitLab issues to this request (optional -- prefer Trello, but GitLab is easier for fast-follow cleanup issues)
  • Listed all dependent merge requests in this summary (optional)

Merge request reports