Skip to content

Passwordless logins FTW

A few weeks ago, I started looking into integrating our store / SSO login with OwnID, to solve the fact that when your SSO session times out, you have to re-sign into the store (also, in 2023, protecting all your services behind a simple password seems a little.. too little)

The development got stuck behind decomissioning longhorn (another long story, it didn't scale well!), but after finally reproducing the prod store in dev for an accurate bug report to the OwnID team.. it worked perfectly ๐Ÿคฆโ€โ™‚๏ธ

So... we now have passwordless / biometric logins for the store / SSO! ๐Ÿฅณ

How to go passwordless

Just log out and log in again. When you login, "magic" will happen, and thereafter, you'll be able to login with your fingerprint / face / eyeballs etc.

Should we enforce passwordless login?

Right now, the OwnID plugin just works alongside the default Wordpress login. We do have the option to remove the Wordpress login flow, and rely on OwnID only, which would make the solution overall more secure (nobody can brute-force your account). I'd like to gather some feedback over the next week on this idea, so jump into Discord and let me know!

Buy faster at the store

After some tinkering with the Bitnami Wordpress helm chart values, I was able to turn on the W3 Total Cache plugin, which promises to improve page loads and responsiveness. I also turned on CloudFlare proxying for some extra speedz on those static assets.

TL;DR - the store should be faster to navigate, and stop 404ing under load! (RAM usage has reduced by 50%, but that may just be a result of a restart).

Maintenance window worked

Our first maintenance window rolled by a few hours ago (10h00 UTC to 11h00 UTC), and it's likely that most of you pods were restarted, given there were lots of little changes queued up. Your health tab will show you whether any of your apps were restarted1, but it only checks every 5 min, so the restart may have been completely under-the-radarr (haha).

We'll keep to a daily schedule for these updates - new-apps only restart if there's an upstream (depends on the pace of upstream development) or base image security update (once or twice a month), and they're typically back in < 1 min.

Next Up

  • Add a link on the store user account page to the app dashboard (not done yet, but I've found out how to do it)
  • Send email to user with link to their dashboard (enabled but needs testing)
  • Make checkout fields work better with browser auto-fill (is this a Woocommerce/Wordpress issue?)

Thanks for building with us - stay tuned!

  1. No emails were sent during the maintenance window though, which is what we wanted!