Drupal is a registered trademark of Dries Buytaert
Protected Pages 3.0.0 Major update available for module protected_pages (3.0.0). Commerce Core 3.3.8 Minor update available for module commerce (3.3.8). Search API HTML Element Filter 1.0.7 Minor update available for module search_api_html_element_filter (1.0.7). Layout Builder Reorder 2.0.1 Minor update available for module layout_builder_reorder (2.0.1). Ban 1.1.0 Minor update available for module ban (1.1.0). Field Formatter Range 2.0.0 Major update available for module field_formatter_range (2.0.0). Field Formatter Range 8.x-1.8 Minor update available for module field_formatter_range (8.x-1.8). UI Patterns (SDC in Drupal UI) 2.0.18 Minor update available for module ui_patterns (2.0.18). Search API Solr 4.3.11 Module search_api_solr updated after 14 months of inactivity (4.3.11). Provus Mega Menu Module provus_mega_menu crossed 1,000 active installs.

This module provides APIs for user registration, login, and account management in decoupled applications using WebAuthn and JWT tokens. It supports registration via phone or email with OTP, authentication with passwords or passkeys, password recovery, and passkey management.

Decoupled WebAuthn Register Login (dwarl) provides apis for user registration, login and management using webAuthn and JWT tokens, for decoupled front end apps such as PWAs.

Features

It has API endpoints to support the following feature:

  • Register using phone or email (includes submodule with Twilio API integration for SMS) using a OTP (One time pass)
  • Authenticate using password or passkey
  • Forgot password flow
  • Lost passkey flow
  • Change email or phone with validation via OTP
  • Change password using OTP or passkey
  • Manage passkeys - list, add and remove

Post-Installation

The permissions need to be carefully set to ensure access is granted where appropriate.

Additional Requirements

This module is dependent upon:

This module has no rate limits built in.
I suggest installing and configuring the Rate Limits module.

This module was based upon Decoupled Passkeys (Webauthn) but the scope of this project has grown much larger.

Similar projects

There is nothing similar at the moment that tries to tie all this together.

This is still very much dev at this point.

There is limited documentation at https://app.swaggerhub.com/apis/dahousecat/Dwarl/1.0.0#/ but not all endpoints are documented yet.

The most reliable documentation at this point is the tests.
They should all pass so document how each API endpoint is intended to be used.

There is an npm library to go with this module: https://www.npmjs.com/package/@felixfever/dwarl

But again this is still in development.

Activity

Total releases
1
First release
Feb 2025
Latest release
1 year ago
Releases (12 mo)
0 ▼ from 1
Maintenance
Dormant

Releases

Version Type Release date
1.0.x-dev Dev Feb 5, 2025