QA/Browser Technologies/Services/Releases/BrowserID 10132011
From MozillaWiki
< QA | Browser Technologies | Services | Releases
Contents
Information
- Train 9: 10-13-2011
Links
- Bugs/Issues: https://github.com/mozilla/browserid/issues
- Test Plan: https://wiki.mozilla.org/QA/BrowserID/TestPlan
- Test Wiki: https://wiki.mozilla.org/QA/BrowserID/BrowserID_Weekly_Trains_Beta
- Beta Server: https://diresworb.org
- Beta Client: http://beta.myfavoritebeer.org
Deployment Ticket
- bug 694383 - QA and deploy BrowserID train-2011.10.13 to production
ChangeLog
- 10/06 ChangeLog including issues resolved
- 10/13: ChangeLog including issues resolved
Versions
- Beta: https://diresworb.org/ver.txt
- 825db6f document changes in train-2011.10.13 (and fix some spelling errors. damnit lloyd.
- Dev: https://dev.diresworb.org/ver.txt
- 26ece52 Merge branch 'button_underline_on_hover' into dev
- Prod: https://browserid.org/ver.txt
- 20c0f26 integrating train 2011.10.06
Resolved/Closed Issues
- [BrowserID issue 336] : Verification of email in different browser is broken
- [BrowserID issue 394] : Confusing Account Manager page after removing last or only email
- [BrowserID issue 137] : "Forget this Email" acts like "Cancel your account" if account has only one email
- [BrowserID issue 380] : Identity Team and Mozilla Labs links should open new tabs or windows
- [BrowserID issue 133] : Clean up client-side UI after sign-in
- [BrowserID issue 269] : some updates to the dialog from a couple of days ago
- [BrowserID issue 343] : IE9 showing mixed mode warning on dev.diresworb.org.
- [BrowserID issue 342] : Safari on OSX errors trying to access relay frame.
- [BrowserID issue 347] : after setting password, user experience is confusing
- [BrowserID issue 356] : change cursor to pointer when hovering over email addresses in pick email section.
- [BrowserID issue 357] : "this is not me" and "use a different email" should be on different line from "sign in" button.
- [BrowserID issue 404] : warn user that removing last email address effectively cancels account
- [BrowserID issue 350] : new /about page needs graphics!
- [BrowserID issue 364] : error messages needed for sign in page
- [BrowserID issue 329] : WSAPI CHANGES: a mis-set client clock no longer causes invalid assertions to be issued (wsapi changed to minimize network requests)
- [BrowserID issue 333] : disallow re-registration of existing account
- [BrowserID issue 275] : (non-visible) namespacing in dialog code
- [BrowserID issue 278] : significant performance / UX improvment - keys are generated and certified when needed, not all upfront at sign-in
- [BrowserID issue 280] : remove 'download printable format' language from privacy policy
- [BrowserID issue 335] : more user visible error messages to improve community sourced problem reports
- [BrowserID issue 246] : using StealJS in dev mode causes IE8 to not load the BrowserID Dialog
- [BrowserID issue 310] : cookie fixes revisited, now on upstream version of connect-cookie-session
- [BrowserID issue 365] : (merged 2011.10.07) fix unstyled flash at first dialog display
- [BrowserID issue 405] : 'cancel account' link added to manage page
- [BrowserID issue 412] : Optimize UI in case where user has only 1 email address
- [BrowserID issue 410] : smooth out transition from pick email to add new email pages
- [BrowserID issue 409] : reposition remove buttons on manage page
- [BrowserID issue 380] : identity and labs links open in new tabs
- [BrowserID issue 390] : fix innocuous (but ugly) error in firefox error console
- [BrowserID issue 335] : Dialog needs error messages
- [BrowserID issue 276] : improved debugging, all network callbacks are invoked asynchronously
- [BrowserID issue 209] : MYSQL SCHEMA CHANGE: add index to emails table
- [BrowserID issue 204] : implement dynamic bcrypt work factor update
- [BrowserID issue 212] : determine default bcrypt work factor
- [BrowserID issue 217] : WSAPI CHANGES: all server responses are now objects
- [BrowserID issue 325] : WSAPI CHANGES: all server responses are now objects
- [BrowserID issue 214] : move to socketlabs for email delivery (for Dev/Beta)
Verified As Still Open or to be Reopened
- [BrowserID issue 354] : CSRF validation failure on confirmation page.
- [BrowserID issue 398] : Seeing token mismatch errors in the Beta browserid.log
- [BrowserID issue 98] : API BREAKING CHANGE: verifier no longer supports GET requests
- [BrowserID issue 346] : IE8 no longer works with new design. Javascript errors after authenticating.
Opened Bugs/Issues For This Week
- bug 676323 - catalog all logging on production browserID
- [BrowserID issue 419] : Help build out QA VM to run behind web service
- [BrowserID issue 423] : Sign-in popup has no scrollbars → confusing when zoomed in
- [BrowserID issue 424] : add the existing "Sign in" link to browserID home page
- [BrowserID issue 425] : Sign In with iOS5 results in weird tab behaviour
- [BrowserID issue 426] : Create a medium-technical FAQ page
- [BrowserID issue 427] : iPhone4: The "need help?" link on Sign In page does not open SUMO
- [BrowserID issue 428] : Opening BrowserID from an Android WebView gives HTML5 error
- [BrowserID issue 429] : Provide better email/domain name handling
- [BrowserID issue 430] : Prevent malicious verification flooding of e-mail addresses of others
- [BrowserID issue 431] : Initial repoze.who browser id plugin
- [BrowserID issue 432] : browserid.org/include.js should have link to unminified source
- [BrowserID issue 441] : E-mail messages from browserid.org have bad DKIM signatures (according to Yandex.ru)
- [BrowserID issue 442] : browserID sign in page shows a blank tab on iOS5
- [BrowserID issue 443] : Enforcing better passwords
- [BrowserID issue 444] : Small typo on the verify email address page.
- [BrowserID issue 445] : Trying to submit the email for browser id does not work correctly
- [BrowserID issue 446] : BrowserID - Deleting an account does not delete user's data and saved sessions with websites
- [BrowserID issue 447] : BrowserID - Cannot see multiple accounts from Account Manager at https://diresworb.org/
- [BrowserID issue 448] : Better messaging for issues with connection
- [BrowserID issue 449] : "How It works" link does not work on iOS 5
- [BrowserID issue 450] : "Need Help?" link needs colorization
- [BrowserID issue 451] : Help does not fit in the signin window for iOS 5 apps
- [BrowserID issue 452] : "forgot your password?" should be colorized to indicate it as a link
- [BrowserID issue 453] : Ui for adding a different email address is spaced out on iOS 5
- [BrowserID issue 454] : browserid.log: user is authenticated with an email that doesn't exist in the database
- [BrowserID issue 455] : browserid.log: got one "error: error completing the verification: unknown secret"
- [BrowserID issue 421] : Functionality for adding emails should also be added in the Account Manager
- [BrowserID issue 435] : The diresworb.org "remove" button is not displayed fine in IE9 and Opera
- [BrowserID issue 436] : The message displayed after confirming an email address should be corrected
- [BrowserID issue 437] : The message displayed when removing the last email address should be modified
- [BrowserID issue 438] : https://diresworb.org is confusing for a signed in user
- [BrowserID issue 439] : The behavior when confirming an email while signing up from diresworb.org should be consistent with the one when doing it from the client
Other Open Bugs
- [BrowserID issue 420] : missing word on thank you page
- [BrowserID issue 422] : "Password reset" unlinks account
- [BrowserID issue 433] : assertion expiration time is actually issue time
- [BrowserID issue 434] : list_emails called twice whenever authenticating.
- [BrowserID issue 440] : button hover behaviors inconsistent across main site
- [BrowserID issue 214] : accept SMTP parameters from the environment (in progress, not yet closed)
- [BrowserID issue 273] : A message should be displayed for unsupported browsers
- [BrowserID issue 456] : Verification mail sender host does not have a reverse DNS entry
- [BrowserID issue 457] : assertions passed to RP are showing as invalid
- [BrowserID issue 458] : Fixing a problem where the expiration date for the assertions was being ...
- [BrowserID issue 349] : email confirmation page is unstyled
- [BrowserID issue 459] : Coherent dialog link colors and contrast
- [BrowserID issue 361] : Fun with IE8
- [BrowserID issue 460] : break up browserid into several distinct processes
- [BrowserID issue 401] : fixed signing dialog hang when you delete an email on manage page while dialog is open (now that's not obscure :P)
- [BrowserID issue 461] : Check whether android < 3.0 can be used with new JSON responses.
- [BrowserID issue 462] : "check your email" screen shows under email input on mobile
- [BrowserID issue 463] : Pick email screen is difficult to use on a tablet.
- [BrowserID issue 464] : new email address field is automatically capitalized on iOS.
- [BrowserID issue 465] : Show user an error message if communication relay cannot be found
- [BrowserID issue 466] : Deal with deleted acounts when the dialog is open & authenticated
Notes
- This weekly train was used for the first BrowserID Test Day.
- And from Lloyd:
- Yesterday morning train 2011.10.13 rolled into production bringing a long awaited feature: proper email delivery. Reverse DNS resolution, DKIM, and all that magic that keeps browserid emails out of spam folders is now implemented. This train also brings tons of refinements to the new UI that were reported by moz QA and the community, and some security improvements, check the ChangeLog [1] for deets.
- Additionally, 2011.10.20 has left the station, the ChangeLog is available [2] but here are the key features:
- Support for earlier android browsers (<3.0)
- many more refinements of the new UI.
- mobile usability improvements.
- Security improvments: scheme is now included in assertions
- A quick note to implementors: When you're sending assertions over, please upgrade your code to include the scheme. So https://mysi.te rather than mysi.te. We've been careful to preserve backwards compatibility, but porting sooner is better.
- happy better way to signining,
- The BrowserID Team