Closed
Bug 1027908
Opened 10 years ago
Closed 9 years ago
Security Review: Serverless in-app payments
Categories
(mozilla.org :: Security Assurance: Review Request, task)
mozilla.org
Security Assurance: Review Request
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: andy+bugzilla, Assigned: amuntner)
References
Details
Project/Feature Name: Serverless in-app payments
Tracking ID: 944480
Description:
This project is to remove the need for a developer to run a server to process in-app payments. It's not really "serverless" because it requires processing by the marketplace servers. But it does remove it from the developers.
Additional Information: https://wiki.mozilla.org/Marketplace/InAppPayments
Key Initiative: Marketplace / Apps
Release date: July 2014
Project status: development
Mozilla Data: Yes
Mozilla Related: Payments for Marketplace
Separate Party: No
Security Review Questions:
Affects products: yes
Review due date:
Review invitees: kmcmillan@mozilla.com, jkerim@mozilla.com
Extra information:
I think adamm is taking over marketplace stuff from rforbes
Flags: needinfo?(amuntner)
OS: Mac OS X → All
Hardware: x86 → All
since the wiki for this is public I am unhiding this bug as I don't see a reason to hide it
Group: mozilla-employee-confidential
Assignee | ||
Updated•10 years ago
|
Flags: needinfo?(amuntner)
Updated•10 years ago
|
Assignee: nobody → amuntner
Assignee | ||
Comment 3•10 years ago
|
||
I am working on the review for this, question:
Is the documentation at https://wiki.mozilla.org/Marketplace/InAppPayments still accurate? If not, could someone please update?
Reporter | ||
Comment 4•10 years ago
|
||
That Wiki looks accurate. We are hoping to roll this out for QA and then into production in the next couple of weeks.
Assignee | ||
Comment 5•10 years ago
|
||
Andy,
Just so I'm clear, can you specifically point me to the code and instance/urls that are in scope for this review? I don't want to leave anything out.
Assignee | ||
Updated•10 years ago
|
Flags: needinfo?(amckay)
Reporter | ||
Comment 6•10 years ago
|
||
The changes are in zamboni and webpay, but cover quite a lot of end points, pull requests and the like. Jared and Kumar worked on this, so better to ping them. Here's some API docs:
http://firefox-marketplace-api.readthedocs.org/en/latest/topics/payment.html#in-app-products
http://firefox-marketplace-api.readthedocs.org/en/latest/topics/payment.html#preparing-payment
http://firefox-marketplace-api.readthedocs.org/en/latest/topics/payment.html#payment-status
Would a quick diagram, chat, etherpad make sense here to review the flow?
Flags: needinfo?(amckay)
Assignee | ||
Comment 7•9 years ago
|
||
Closing, not doing reviews through this process any longer
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•