Jump to content

Authentication integration: Difference between revisions

Authentication integration (view source)

Revision as of 00:08, 5 September 2010

265 bytes added ,  13 years ago
no edit summary
imported>Paulproteus
No edit summary
imported>Paulproteus
No edit summary
Line 11:
* Applications outside openhatch.org should not be able to use this system to gain information about users. (They might be able to use ''other'' mechanisms, but not this one.)
* These applications don't have to be particularly securely maintained. (Specifics...?)
 
m_stone's notes:
 
* You should plan to rotate authenticators.
* Maybe use separate HMAC keys for separate "apps"?
* I'm a bit nervous about having splittable cookies. Maybe add an index cookie? (fun link: [http://wiki.laptop.org/go/Canonical_JSON canonical json])
 
== Overview ==
Anonymous user
Retrieved from "https://wiki.openhatch.org/wiki/Special:MobileDiff/4800"
Cookies help us deliver our services. By using our services, you agree to our use of cookies.
More information