|
|
| Line 151: |
Line 151: |
| === Verifier === | | === Verifier === |
|
| |
|
| FxA will host its own BID verifier for relying Mozilla service to verify the assertions FxA generates. The reason is that the <code>principal</code> will be <code>{ email: <user's real email>, uid: <FxA user id> }</code>, which is not BID-kosher. | | FxA enables clients to generate BrowserID assertions on behalf of the user. FxA provides a hosted verifier for verifying these assertions. |
|
| |
|
| Update (11/14/13): A separate verifier is currently off the table. The proposal is to use the current verifier, with some changes.
| | Verifier server code: https://github.com/mozilla/browserid-verifier |
| Update (11/15/13): it sure seems like it is back on the table. Can someone confirm?
| | Verifier library: https://github.com/mozilla/browserid-local-verify |
| | | Production deployment: https://verifier.accounts.firefox.com/v2 |
| Discussion:
| |
| * https://github.com/mozilla/fxa-auth-server/issues/292
| |
| * https://github.com/mozilla/fxa-auth-server/pull/275
| |
| * https://groups.google.com/forum/#!topic/mozilla.dev.identity/1ecTUrOFzbQ
| |
|
| |
|
| == Desktop == | | == Desktop == |