Closed Bug 892025 Opened 11 years ago Closed 11 years ago

Implement Android client for PICL Authentication/Keyserver

Categories

(Firefox for Android Graveyard :: Android Sync, defect)

Product:
Firefox for Android Graveyard
Component:
Android Sync
Platform:
All
Android
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: ckarlof, Assigned: nalexander)

References

(Depends on 1 open bug,
URL
)

Details

(Whiteboard: [qa+][fixed in elm])

Attachments

(1 file)

FxAccountClient, V2.
57 bytes, text/x-github-pull-request
nalexander
: review+
rnewman
: feedback+
Details | Review 
The PICL Authentication/Keyserver provides an API for provisioning and authenticating PICL users. It uses email and password for authentication. It also:

* facilitates the retrieval and derivation of the user's data encryption keys
* signs a user's public key which is used to create BrowserID assertions for authenticating to the PICL Storage Server
* implements an API for password reset

Dev server: http://idp.profileinthecloud.net
Code and API docs: https://github.com/mozilla/picl-idp
Protocol details: https://wiki.mozilla.org/Identity/AttachedServices/KeyServerProtocol

It would be great to start collaborating on the implementation of an Android client for this API.
OS: All → Android
Hardware: x86 → ARM
Depends on: 892040
We've reorganized the public API (esp. naming) to be more 'dev-friendly'. Follow the WIP here: https://github.com/mozilla/picl-idp/pull/69

We've also added API calls to address email verification after signup.

Comments are welcome.
Adding some QA names...
Whiteboard: [qa+]
Assignee: nobody → nalexander
Hardware: ARM → All
Blocks: 808813
Depends on: 903123
This bug tracks implementing Java HTTP client that talks to a picl-idp server to create new accounts, fetch salts and keys, and sign certificates.
Blocks: 799726
No longer blocks: 808813
No longer depends on: 892040
Blocks: 905435
Depends on: 912275
Over to rnewman for preliminary feedback (on the client patches).
URL: https://github.com/mozilla-services/a...
Flags: needinfo?(rnewman)
Depends on: 915312
This feels pretty good to me. Let's rebase on top of crypto changes before I take another look?
Flags: needinfo?(rnewman)
Attached file FxAccountClient, V2. 
Re-factored, simplified, and battle hardened.  It's a bit hard to test (even live), but it's working well against localhost and in my Sync 1.1 + FxA tree.

Mostly want to see if anything jumps out at you.
Attachment #819990 - Flags: review?(rnewman)
Comment on attachment 819990 [details] [review]
FxAccountClient, V2.

Comments left on GitHub.
Attachment #819990 - Flags: review?(rnewman) → feedback+
https://hg.mozilla.org/projects/elm/rev/1edbcdfbf2ab
Status: NEW → ASSIGNED
Whiteboard: [qa+] → [qa+][fixed in elm]
Comment on attachment 819990 [details] [review]
FxAccountClient, V2.

r=rnewman on github.
Attachment #819990 - Flags: review+
Flags: sec-review?(mgoodwin)
Depends on: 942336
Secreview happening in bug 942336.
Flags: sec-review?(mgoodwin)
https://hg.mozilla.org/mozilla-central/rev/1edbcdfbf2ab
Status: ASSIGNED → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Leaving as Resolved given the number of open Depends on bugs
Product: Android Background Services → Firefox for Android
Product: Firefox for Android → Firefox for Android Graveyard
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: