Confirmed users
358
edits
Identity/Firefox Accounts: Difference between revisions
m
→Cloud Services
Stomlinson (talk | contribs) m (Add a link to the meeting notes archive) |
m (→Cloud Services) |
||
| Line 87: | Line 87: | ||
* Dev deployment: https://github.com/mozilla/fxa-auth-server#dev-deployment | * Dev deployment: https://github.com/mozilla/fxa-auth-server#dev-deployment | ||
* Python API client (primarily a reference client): https://github.com/warner/picl-spec-crypto | * Python API client (primarily a reference client): https://github.com/warner/picl-spec-crypto | ||
=== OAuth Server === | |||
The OAuth Server provides an HTTP API that: | |||
* accepts BrowserID assertions from the auth-server as authentication | |||
* implements a standard OAuth2 token-granting flow | |||
Links: | |||
* Code: https://github.com/mozilla/fxa-oauth-server | |||
* API documentation: https://github.com/mozilla/fxa-oauth-server/blob/master/docs/api.md | |||
=== Content Server === | === Content Server === | ||
| Line 96: | Line 110: | ||
* hosting password reset pages | * hosting password reset pages | ||
* hosting landing pages for email verification links | * hosting landing pages for email verification links | ||
* hosting UI pages for the OAuth login flow | |||
Links: | Links: | ||
| Line 104: | Line 119: | ||
** prod: https://accounts.firefox.com/ | ** prod: https://accounts.firefox.com/ | ||
Interaction with the Firefox Accounts authentication and OAuth APIs are is done via a Javascript client library. In addition to communicating with the backend servers, it also performs local key stretching (PBKDF2 and scrypt) on the user's password before it's used in the API. It is hosted by the Content Server. This library was at one time called "Gherkin". | |||
Firefox Accounts | |||
Links: | Links: | ||