Closed Bug 1210024 Opened 10 years ago Closed 10 years ago

Research auth approaches for uploading file data (for signing)

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: kumar, Assigned: kumar)

References

Details

Kumar McMillan [:kumar]

Assignee

Description

•

10 years ago

We can't use FxA for API auth but Hawk and JWT seem like good contenders. However, these have complications in that we'd maybe have to sign the entire upload body (the uploaded addon contents). This bug is to try out a proof of authenticating a user who is uploading a large file.

Kumar McMillan [:kumar]

Assignee

Updated

•

10 years ago

Assignee: nobody → kumar.mcmillan

Blocks: 1206158

Kumar McMillan [:kumar]

Assignee

Comment 1

•

10 years ago

Hawk isn't going to work. I think I'm about ready to circulate a proposal. Some proof code: https://github.com/kumar303/file-upload-auth

Status: NEW → RESOLVED

Closed: 10 years ago

Resolution: --- → FIXED

Nobody; OK to take it and work on it

Updated

•

9 years ago

Product: addons.mozilla.org → addons.mozilla.org Graveyard

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Research auth approaches for uploading file data (for signing)

Categories

(addons.mozilla.org Graveyard :: API, defect)

Tracking

(Not tracked)

People

(Reporter: kumar, Assigned: kumar)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Updated