I am creating an anonymous application such as yik yak and wanted to ask which passport strategy is used for authentication. I am currently using the device UUID. I looked at the local strategy and this requires a username, password and its session (I implement a token, so my api does not remain open).
However, I would follow the basic passport-http strategy and generally ignore the password and use only the UUID as authentication?
Please, help! I'm not quite sure how to approach this problem. However, I know that I do not want the user to log in, ever.
Thanks!
source share