Closed Bug 965135 Opened 7 years ago Closed 7 years ago

Let tokenserver use new hosted verifier at https://verifier.accounts.firefox.com

Categories

(Cloud Services :: Server: Token, defect)

Product:
Cloud Services
Component:
Server: Token
Platform:
x86_64
Windows 7
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: rfkelly, Assigned: rfkelly)

References

Details

(Whiteboard: [qa+])

Attachments

(1 file)

tokenserver-new-verifier.diff
3.76 KB, patch
telliott
: review+
Details | Diff | Splinter Review 
We need to support generation numbers and new-style assertion formats in tokenserver, and the existing persona.org verifier doesn't do that.  There's a hot new verifier at https://verifier.accounts.firefox.com that we should use instead.

This patch updates the tokenserver RemoteVerifier implementation to use it.  Because of API and format changes, it's easier to implement just what we need here rather than bringing the whole of PyBrowserID up to spec.  We should push this down into PyBrowserID at some point in the future.
Assignee: nobody → rfkelly
Attachment #8367123 - Flags: review?(telliott)
Blocks: 963209
Blocks: 961253
/me wonders if we need a Dev and/or Stage ticket to match this one for Prod.
Whiteboard: [qa+]
They'll all get it by default as the new version of the code rolls out
Comment on attachment 8367123 [details] [diff] [review]
tokenserver-new-verifier.diff

Review of attachment 8367123 [details] [diff] [review]:
-----------------------------------------------------------------

The patch is fine. I'm a little worried about having external verification as part of this process along with such short-duration tokens, but we're obvioulsy not going to do local verification at this point.
Attachment #8367123 - Flags: review?(telliott) → review+
*nod*

Some additional discussion on potential paths forward in Bug 956222.
https://github.com/mozilla-services/tokenserver/commit/6ff5aabd80273528b45d870172917ea927d2c129
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
I think this has been pushed to Prod as well as Stage.
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.