For twilio configuration we need to set such required envs
BARONG_TWILIO_ACCOUNT_SID, which acts as a twilio username
BARONG_TWILIO_SERVICE_SID, which acts as a twilio password
BARONG_TWILIO_PHONE_NUMBER, virtual phone numbers which will give you instant access to local, national, mobile, and toll-free phone numbers
We have ability to set twilio with 3 different ways
BARONG_PHONE_VERIFICATION == "twilio_sms"
If you choose phone verification as twilio sms we will use send_sms API call
Also you can add your own template for sms using
BARONG_PHONE_VERIFICATION == "twilio_verify"
In this case we will use twilio Verify API call
There are a lot of benefits of using Verify API like you can validate users via voice
One verification service can be used to send multiple verification tokens, it is not necessary to create a new service each time, so you can set
BARONG_TWILIO_SERVICE_SID at once
BARONG_PHONE_VERIFICATION == "mock"
With this type of verification all the numbers will be accepted and validated as a right code for any given number
GOOGLE_STORAGE_SECRET_ACESS_KEYLearn more about creating Access/Secret keys
reCAPTCHA is a CAPTCHA-like system designed to establish that a computer user is human (normally in order to protect websites from bots) and, at the same time, assist in the digitization of books or improve machine learning.
You can learn more about how to create
RECAPTCHA_SITE_KEY in this article
Pass routes will never be checked by AuthZ endpoint and will be available without session requirement. On
Block routes user always will get 401, it doesn't depend on a session / role / ip / etc
You need to put whitelisted (public) routes for pass object and blacklisted routes for block in authz_rules.yml
We can customize barong configuration as we want
- Identity card
- Driver license
- Utility Bill