Skip to main content

Authenticator

An authenticator is mechanism that proves the identity of a user. Healthblocks supports two types of authenticators. The first is OpenID, an industry standard way to connect existing identities (think of Google/Apple) to your own patient experience. The second option is email/password.

The advantage of email/password is that it requires no setup with a third party. The advantage of OpenID is that the user does not need to remember another password, typically resulting in improved security.

OpenID (oAuth)

oAuth2 is the recommended way of authentication.

Credentials

This means email + password. Same concept as in NextAuth.
When configuring email + password authentication it is required to connect a smtp mailer. This mailer is used to send users a password reset email when they forgot their password.

Mailer data:
From: The email address you want your users to get the password reset email from.
Smtp: Your smtps connection url.

Example:

{
  "from": "password@healthblocks.io",
  "smtp": "smtps://username:password@smtp.example.com/?pool=true"
}

Meta:
Callbacks: An array of urls the user can be sent to when requesting a password reset.