Closed
Bug 1027908
Opened 10 years ago
Closed 9 years ago
Security Review: Serverless in-app payments
Categories
(mozilla.org :: Security Assurance: Review Request, task)
mozilla.org
Security Assurance: Review Request
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: andy+bugzilla, Assigned: amuntner)
References
Details
Project/Feature Name: Serverless in-app payments Tracking ID: 944480 Description: This project is to remove the need for a developer to run a server to process in-app payments. It's not really "serverless" because it requires processing by the marketplace servers. But it does remove it from the developers. Additional Information: https://wiki.mozilla.org/Marketplace/InAppPayments Key Initiative: Marketplace / Apps Release date: July 2014 Project status: development Mozilla Data: Yes Mozilla Related: Payments for Marketplace Separate Party: No Security Review Questions: Affects products: yes Review due date: Review invitees: kmcmillan@mozilla.com, jkerim@mozilla.com Extra information:
I think adamm is taking over marketplace stuff from rforbes
Flags: needinfo?(amuntner)
OS: Mac OS X → All
Hardware: x86 → All
since the wiki for this is public I am unhiding this bug as I don't see a reason to hide it
Group: mozilla-employee-confidential
|
Assignee | |
Updated•10 years ago
|
Flags: needinfo?(amuntner)
|
||
Updated•10 years ago
|
Assignee: nobody → amuntner
|
|
Assignee | |
Comment 3•10 years ago
|
||
I am working on the review for this, question: Is the documentation at https://wiki.mozilla.org/Marketplace/InAppPayments still accurate? If not, could someone please update?
|
Reporter | |
Comment 4•10 years ago
|
||
That Wiki looks accurate. We are hoping to roll this out for QA and then into production in the next couple of weeks.
|
|
Assignee | |
Comment 5•10 years ago
|
||
Andy, Just so I'm clear, can you specifically point me to the code and instance/urls that are in scope for this review? I don't want to leave anything out.
|
|
Assignee | |
Updated•10 years ago
|
Flags: needinfo?(amckay)
|
|
Reporter | |
Comment 6•10 years ago
|
||
The changes are in zamboni and webpay, but cover quite a lot of end points, pull requests and the like. Jared and Kumar worked on this, so better to ping them. Here's some API docs: http://firefox-marketplace-api.readthedocs.org/en/latest/topics/payment.html#in-app-products http://firefox-marketplace-api.readthedocs.org/en/latest/topics/payment.html#preparing-payment http://firefox-marketplace-api.readthedocs.org/en/latest/topics/payment.html#payment-status Would a quick diagram, chat, etherpad make sense here to review the flow?
Flags: needinfo?(amckay)
|
|
Assignee | |
Comment 7•9 years ago
|
||
Closing, not doing reviews through this process any longer
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•