Changes

Jump to: navigation, search

Identity/AttachedServices/KeyServerProtocol

283 bytes removed, 03:33, 8 November 2013
Remove notion of a "createToken" which we don't intend to implement
* create srpVerifier from srpPW and srpSalt (as described below)
* deliver (email, stretchParams, mainSalt, srpParams, srpSalt) to the keyserver's "POST /account/create" API
 
 
To limit abuse, the createAccount() should also require a fresh "createToken". This should be created by some other API, outside the scope of this document, that perhaps requires a CAPTCHA or something. createAccount() might also require a proof-of-work token, as described below.
The server, when creating a new account, creates both kA and wrap(kB) as randomly-generated 256-bit (32-byte) strings. It stores these, along with all the remaining values, indexed by email, in the account table where they can be retrieved by getToken later.
Rfkelly
Confirm
358
edits
Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/755255"

Navigation menu