<div dir="ltr"><div>The ability to share your Hulu password with your friend from within your password manager.<br><br><br></div><div>(we also need a key directory to store those keys, that's the other thread)<br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Dec 29, 2014 at 7:55 PM, Christopher Karlof <span dir="ltr"><<a href="mailto:ckarlof@mozilla.com" target="_blank">ckarlof@mozilla.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">I love building tech as much as the next engineer, but can someone remind me what the user story/use case we’re supporting with this infrastructure, and where that sits in our 2015 plan?<div><br></div><div>-chris</div><div><br></div></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Dec 29, 2014 at 2:06 AM, Ryan Kelly <span dir="ltr"><<a href="mailto:rfkelly@mozilla.com" target="_blank">rfkelly@mozilla.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span><br>
On 29/12/2014 20:44, Rémy Hubscher wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
So after signin you access another content-server served page to do the<br>
encryption<br>
</blockquote>
<br></span>
It could also be just an additional function of the main oauth signin page. It already has a bunch of javascript logic in there for doing other things.<span><br>
<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
before going back to the service provider?<br>
</blockquote>
<br></span>
Before redirecting back to the relier, yes.<br>
<br>
(The terms "relier" and "service provider" have fairly precise meanings in oauth so I want to make sure we're using the correct one here).<span><font color="#888888"><br>
<br>
<br>
Ryan</font></span><div><div><br>
<br>
<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Le 29/12/2014 10:42, Ryan Kelly a écrit :<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
On 29/12/2014 20:33, Rémy Hubscher wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
Le 29/12/2014 10:31, Ryan Kelly a écrit :<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
They are encrypted by client-side javascript from the content server<br>
</blockquote>
<br>
This is the part I didn't understand. On which resource of the<br>
content-server?<br>
</blockquote>
<br>
The oauth provisioning page. IIRC in production this is:<br>
<br>
<a href="https://accounts.firefox.com/oauth/signin" target="_blank">https://accounts.firefox.com/<u></u>oauth/signin</a><br>
<br>
<br>
<br>
Ryan<br>
</blockquote>
<br>
______________________________<u></u>_________________<br>
Dev-fxacct mailing list<br>
<a href="mailto:Dev-fxacct@mozilla.org" target="_blank">Dev-fxacct@mozilla.org</a><br>
<a href="https://mail.mozilla.org/listinfo/dev-fxacct" target="_blank">https://mail.mozilla.org/<u></u>listinfo/dev-fxacct</a><br>
<br>
</blockquote>
______________________________<u></u>_________________<br>
Dev-fxacct mailing list<br>
<a href="mailto:Dev-fxacct@mozilla.org" target="_blank">Dev-fxacct@mozilla.org</a><br>
<a href="https://mail.mozilla.org/listinfo/dev-fxacct" target="_blank">https://mail.mozilla.org/<u></u>listinfo/dev-fxacct</a><br>
</div></div></blockquote></div><br></div>
</div></div><br>_______________________________________________<br>
Dev-fxacct mailing list<br>
<a href="mailto:Dev-fxacct@mozilla.org">Dev-fxacct@mozilla.org</a><br>
<a href="https://mail.mozilla.org/listinfo/dev-fxacct" target="_blank">https://mail.mozilla.org/listinfo/dev-fxacct</a><br>
<br></blockquote></div><br></div>