Entity Auth

This module provides a plug-able framework for authenticating users against any entity. This module does not do anything on it's own. It does, however, provide a fairly sane default plugin base that does a lot of the heavy lifting. By default, the module will fire an event to notify subscribers that a user has passed authentication, ask for a redirect from the subscribers, and move the user on.

See the entity_auth_test module provided in the tests directory for a password-less login example.

Example use cases:

• Password-less logins
• Custom password reset flow
• One-time access to entities.
• User registration validation
• 2 Factor Authentication

Roadmap:

• Event for initializing authentication
• Event on route failure
• Event on authentication failure (query parameter or auth code)
• Add ability to stop user from refreshing keys
• Integration into the flood module (use event subscribers from failed attempts)
• Add encryption capabilities to hash data storage