Closed
Bug 1008736
Opened 10 years ago
Closed 10 years ago
Settings WiFi EAP-TLS UI is confusing and invalid
Categories
(Firefox OS Graveyard :: Gaia::Settings, defect)
Tracking
(tracking-b2g:backlog, b2g-v1.4 wontfix, b2g-v2.0 fixed, b2g-v2.1 fixed)
People
(Reporter: gerard-majax, Assigned: chucklee)
References
()
Details
Attachments
(1 file)
|
46 bytes,
text/x-github-pull-request
|
arthurcc
:
review+
bajaj
:
approval-gaia-v2.0+
|
Details | Review |
To my knowledge, EAP-TLS authentication method does not use any login/password tuple and instead rely on a user certificate. The current Settings UI to add a new (hidden) network allows to select WPA-EAP as a security. Once EAP is selected, one can choose the EAP method within: SIM, PEAP, TLS and TTLS. When selecting EAP-TLS, then the UI changes and expects the users to give: - a login - a password - select a server certificate This is just wrong for EAP-TLS, which expects users to enter: - an identity - a user certificate - a CA certificate - a private key - a passphrase Private key and user may be bundled together (PKCS#12 for instance). To my understanding and given how bug 745468 has been renamed, we do not (yet) support EAP-TLS. However, the UI setting is there and it may confuse users in two way: - letting them think EAP-TLS is supported - setting a broken configuration So, if EAP-TLS is not yet supported, we should just not expose it in the settings. If it is, then this UI seems to need to be fixed.
|
Reporter | |
Comment 1•10 years ago
|
||
Adding RFC section describing peer certificate validation.
|
|
Reporter | |
Comment 2•10 years ago
|
||
UX specs given in bug 988150 does not mention presenting EAP-TLS method.
Depends on: 988150
Flags: needinfo?(ofeng)
|
Assignee | |
Comment 3•10 years ago
|
||
We just don't support TLS yet, Gaia will be update after bug 1002314 to show supported EAP methods based on system capabilities.
|
|
Reporter | |
Comment 4•10 years ago
|
||
(In reply to Chuck Lee [:chucklee] from comment #3) > We just don't support TLS yet, Gaia will be update after bug 1002314 to show > supported EAP methods based on system capabilities. I see your linked bug is a gecko one, quite invasive. Why don't you just remove TLS from Gaia for now ? And that does not answers the fact that the current TLS UI is wrong.
Flags: needinfo?(chulee)
|
|
Assignee | |
Comment 5•10 years ago
|
||
I know UI is wrong now, and I like to fix it by Gaia's support for wifi capabilities within this release. Then Gaia team don't have to modify code which will be removed later.
Flags: needinfo?(chulee)
|
||
Updated•10 years ago
|
Flags: needinfo?(ofeng)
|
|
Reporter | |
Comment 6•10 years ago
|
||
(In reply to Chuck Lee [:chucklee] from comment #5) > I know UI is wrong now, and I like to fix it by Gaia's support for wifi > capabilities within this release. > Then Gaia team don't have to modify code which will be removed later. This code is already landed: people will have to fix it anyway. And it's exposed to users, who will be mislead.
Flags: needinfo?(chulee)
|
||
Comment 7•10 years ago
|
||
Based on Chuck's comments, I don't think this is a regression, but rather a new feature bug.
Keywords: regression
|
|
Reporter | |
Comment 8•10 years ago
|
||
UX people, what do you think of this ?
Flags: needinfo?(firefoxos-ux-bugzilla)
|
||
Comment 9•10 years ago
|
||
Re-adding Omega for UX comment here. Omega, please comment or just let us know if you agree/disagree with other comments if that's the case.
Flags: needinfo?(firefoxos-ux-bugzilla)
|
||
Updated•10 years ago
|
blocking-b2g: 2.0? → backlog
Flags: needinfo?(ofeng)
|
||
Comment 11•10 years ago
|
||
Yes, per https://bugzilla.mozilla.org/show_bug.cgi?id=1002314#c8, Gaia have to reach the capability of authentication which are supported in different Gecko version, platform. See "TLS" is not in property "eapMethods" for wifi in 2.0.
Flags: needinfo?(iliu)
|
|
||
Updated•10 years ago
|
Status: NEW → RESOLVED
Closed: 10 years ago
Flags: needinfo?(iliu)
Resolution: --- → DUPLICATE
|
||
Comment 15•10 years ago
|
||
From UX perspective, it's better to remove TLS from the list.
Flags: needinfo?(ofeng)
Flags: needinfo?(jelee)
|
|
Assignee | |
Comment 16•10 years ago
|
||
Attachment #8433987 -
Flags: review?(iliu)
Flags: needinfo?(chulee)
|
|
Assignee | |
Updated•10 years ago
|
Assignee: nobody → chulee
|
|
||
Comment 17•10 years ago
|
||
Comment on attachment 8433987 [details] [review] Pull Request Hi Chuck, Since the bug is duplicated with bug 1003054, the supported options should be referenced from capability API. We have to avoid to change the option on different Gaia version without capability reference. We're afraid that other more options needed to be change again.
Attachment #8433987 -
Flags: review?(iliu)
|
|
Assignee | |
Comment 18•10 years ago
|
||
It's was my original plan, but bug 1003054 seems won't done within 2.0 time flame. So I think we might need to remove TTL from UI if UX think it should.
(In reply to Chuck Lee [:chucklee] from comment #18) > It's was my original plan, but bug 1003054 seems won't done within 2.0 time > flame. > So I think we might need to remove TTL from UI if UX think it should. Hi Chucklee, I am not sure this patch is needed in 2.0 or not because it is currently in backlog. Let me ni? howie to decide. If yes, you also have to remove the same part in wifi_helper, but to be honest, this feature will be put back soon when you finish the feature, so I think it is not a must-have action at this time especially we are so close to branch out.
Flags: needinfo?(hochang)
|
|
Reporter | |
Comment 21•10 years ago
|
||
Seriously, the fix is a one line until you implement proper feature detection. Let's not ship a broken v2.0, please !
|
|
Reporter | |
Updated•10 years ago
|
Status: RESOLVED → REOPENED
Resolution: DUPLICATE → ---
|
|
Reporter | |
Updated•10 years ago
|
Attachment #8433987 -
Flags: review?(josea.olivera)
|
||
Comment 22•10 years ago
|
||
Comment on attachment 8433987 [details] [review] Pull Request Sorry guys but I don't feel comfortable enough with reviewing a part of the setting app that I barely know. Forwarding this request to Arthur as he might know. Thanks.
Attachment #8433987 -
Flags: review?(josea.olivera) → review?(arthur.chen)
|
||
Comment 23•10 years ago
|
||
Comment on attachment 8433987 [details] [review] Pull Request Let's hide the menu until TLS is supported.
Attachment #8433987 -
Flags: review?(arthur.chen) → review+
|
|
||
Comment 24•10 years ago
|
||
master: 669bb17a487e53b2c62d628d0e1d1e94968da919
Status: REOPENED → RESOLVED
Closed: 10 years ago → 10 years ago
status-b2g-v1.4:
--- → affected
status-b2g-v2.0:
--- → affected
status-b2g-v2.1:
--- → fixed
Resolution: --- → FIXED
|
|
||
Comment 25•10 years ago
|
||
Comment on attachment 8433987 [details] [review] Pull Request NOTE: Please see https://wiki.mozilla.org/Release_Management/B2G_Landing to better understand the B2G approval process and landings. [Approval Request Comment] [Bug caused by] (feature/regressing bug #): [User impact] if declined: Users will see options not functioning [Testing completed]: manual test [Risk to taking this patch] (and alternatives if risky): none [String changes made]: none
Attachment #8433987 -
Flags: approval-gaia-v2.0?(bbajaj)
|
||
Updated•10 years ago
|
Attachment #8433987 -
Flags: approval-gaia-v2.0?(bbajaj) → approval-gaia-v2.0+
|
||
Comment 26•10 years ago
|
||
v2.0: https://github.com/mozilla-b2g/gaia/commit/7cf86edd1054318e82099119c535c3a83ad2ecfa
Target Milestone: --- → 2.0 S5 (4july)
|
||
Updated•9 years ago
|
blocking-b2g: backlog → ---
tracking-b2g:
--- → backlog
You need to log in
before you can comment on or make changes to this bug.
Description
•