GPG authentication module
Summary
This is an idea based on Debian process. A sort of Register::GPG (or UserDB::GPG ?) will allow to register user account.
Design proposition
- First screen has an input that asks to set a gpg sign of a given text (based on a token)
- User post signed data
- GPG module checks if signature is valid using its trusted.db
- It reads then key data (mail) and search in UserDB if account exists:
- if so, user is simply authenticated (or redirected to account preferences to set missing values)
- else, account is created using Register process (+ redirect to account preferences?)