Miscellaneou

Password Reset

Not yet implemented.

The idea is to allow a user to create one or possibly more recovery keys in the settings. They have to be added to each workspace chain.

With the recovery key and email verification a user can take over an account and replace the MainDevice.

This would require to re-run the OPAQUE registration flow in order to create a new login process.

An example can be found https://github.com/serenity-kit/opaque/tree/main/examples/fullstack-e2e-encrypted-locker-nextjs (opens in a new tab). It also includes Verifpal proofs: https://github.com/serenity-kit/opaque/tree/main/examples/fullstack-e2e-encrypted-locker-nextjs/verifpal (opens in a new tab)

Secure Client Storage Comments