Project

General

Profile

Actions
Copy link

Epic #3

open

Implement a secure user authentication system

Epic #3: Implement a secure user authentication system

Added by Bricklou 2 months ago. Updated about 12 hours ago.

Status:
Planned
Priority:
Normal
Assigned To:
Bricklou
Start date:
03/28/2026
Due date:
% Done:

0%

Estimated time:
(Total: 0:00 h)

Description

As a platform, we need a comprehensive user authentication system that allows users to securely register, log in, and manage their accounts. This epic covers the entire authentication flow (from initial sign-up through to session management and password recovery) ensuring that user data is protected and the experience is seamless across all devices.

This includes handling secure credential storage, token-based session management, and integration with third-party identity providers (e.g., Google, Facebook). The system must comply with relevant security standards and provide a smooth, intuitive experience for both new and returning users.

Subtasks 30 (30 open0 closed)

Feature #159: User RegistrationTo Do03/28/2026

Actions
User Story #163: As a new user, I want to sign up with email and password, so that I can create an accountTo Do03/28/2026

Actions
Sub-Task #164: Validate email format and password strength requirementsTo Do03/28/2026

Actions
Sub-Task #165: Hash and securely store credentialsTo Do03/28/2026

Actions
Sub-Task #166: Send verification email with tokenTo Do03/28/2026

Actions
User Story #167: As a new user, I want to verify my email, so that I can receive notificationsTo Do03/28/2026

Actions
Sub-Task #168: Validate email token and activate accountTo Do03/28/2026

Actions
Sub-Task #236: Send an email with a linkTo Do03/28/2026

Actions
User Story #169: As a new user, I want to register via OAuth/OIDC, so that I can use existing accountsTo Do03/28/2026

Actions
Sub-Task #170: Integrate OAuth/OIDC providers (Google, Discord, GitHub)To Do03/28/2026

Actions
Sub-Task #171: Auto-create account on first OAuth/OIDC loginTo Do03/28/2026

Actions
Feature #160: User LoginPlannedBricklou

Actions
User Story #172: As a user, I want to log in with credentials, so that I can access my accountPlannedBricklou

Actions
Sub-Task #173: Validate credentials against stored hashPlannedBricklou

Actions
Sub-Task #174: Generate and store opaque session token server-sidePlannedBricklou

Actions
Sub-Task #175: Set secure session cookiePlannedBricklou

Actions
User Story #176: As a user, I want to log in via OAuth/OIDC, so that I can use existing providersPlannedBricklou

Actions
Sub-Task #177: Handle OAuth/OIDC callback and create server-side sessionPlannedBricklou

Actions
Feature #161: Session ManagementDraft03/28/2026

Actions
User Story #178: As a user, I want my session to remain active, so that I stay logged inTo Do03/28/2026

Actions
Sub-Task #179: Implement server-side session storage and validationTo Do03/28/2026

Actions
Sub-Task #180: Extend session expiry on user activityTo Do03/28/2026

Actions
User Story #181: As a user, I want to log out, so that I can end my sessionTo Do03/28/2026

Actions
Sub-Task #182: Invalidate server-side session on logoutTo Do03/28/2026

Actions
Feature #162: Password RecoveryTo Do03/28/2026

Actions
User Story #183: As a user, I want to request a password reset, so that I can recover my accountTo Do03/28/2026

Actions
Sub-Task #184: Generate reset token and send reset emailTo Do03/28/2026

Actions
Sub-Task #185: Validate token expiryTo Do03/28/2026

Actions
User Story #186: As a user, I want to reset my password, so that I can regain accessTo Do03/28/2026

Actions
Sub-Task #187: Validate reset token and update password securelyTo Do03/28/2026

Actions

Updated by Bricklou 2 months ago Actions
Copy link
 #1

  • Subtask #4 added

Updated by Bricklou 2 months ago Actions
Copy link
 #2

  • Subtask #5 added

Updated by Bricklou 2 months ago Actions
Copy link
 #3

  • Subtask #6 added

Updated by Bricklou 2 months ago Actions
Copy link
 #4

  • Subtask #7 added

Updated by Bricklou 2 months ago Actions
Copy link
 #5

  • Subtask #8 added

Updated by Bricklou 2 months ago Actions
Copy link
 #6

  • Tracker changed from Epic to Feature

Updated by Bricklou 12 days ago Actions
Copy link
 #7

  • Project changed from Kubestro to Server

Updated by Bricklou 11 days ago Actions
Copy link
 #8

  • Tracker changed from Feature to Epic
  • Status changed from New to Draft

Updated by Bricklou 11 days ago Actions
Copy link
 #9

  • Subtask #159 added

Updated by Bricklou 11 days ago Actions
Copy link
 #10

  • Subtask #160 added

Updated by Bricklou 11 days ago Actions
Copy link
 #11

  • Subtask #161 added

Updated by Bricklou 11 days ago Actions
Copy link
 #12

  • Subtask #162 added

Updated by Bricklou 11 days ago Actions
Copy link
 #13

  • Subtask deleted (#4)

Updated by Bricklou 11 days ago Actions
Copy link
 #14

  • Subtask deleted (#5)

Updated by Bricklou 11 days ago Actions
Copy link
 #15

  • Subtask deleted (#6)

Updated by Bricklou 11 days ago Actions
Copy link
 #16

  • Subtask deleted (#7)

Updated by Bricklou 11 days ago Actions
Copy link
 #17

  • Subtask deleted (#8)

Updated by Bricklou about 12 hours ago Actions
Copy link
 #18

  • Status changed from Draft to To Do

Updated by Bricklou about 12 hours ago Actions
Copy link
 #19

  • Status changed from To Do to Planned
  • Start date deleted (03/28/2026)
Actions
Copy link

Also available in: PDF Atom