Labs/Identity/VerifiedEmailProtocol: Difference between revisions

Jump to navigation Jump to search

Labs/Identity/VerifiedEmailProtocol (view source)

Revision as of 23:08, 9 May 2011

49 bytes added ,  9 May 2011
m
→‎Primary Authorities
Line 98: Line 98:
#Store "alice@mailhost.com", along with the private key, in secure, private, local storage  
#Store "alice@mailhost.com", along with the private key, in secure, private, local storage  
#Return the public key to the web page through the callback
#Return the public key to the web page through the callback
<blockquote><font color=green>How is the primary authority determined? What happens if a site that is not a primary authority attempts to set this value? (e.g. google.com attempts to set a primary for gmail.com)</font></blockquote>
<blockquote><font color=green>Primary Auth is determined by webfinger lookup on the provided email address to ensure that the domain is allowed. An info block that fails this check is not stored, the user is notified of the attempt, and the code returns false.</font></blockquote>


The page will then upload the public key to the server, who will store it in a database, keyed on the user's address, for later retrieval (see section 6.4 for a discussion of what else the server could provide with it).  
The page will then upload the public key to the server, who will store it in a database, keyed on the user's address, for later retrieval (see section 6.4 for a discussion of what else the server could provide with it).  
Jrconlin
Confirmed users
1,022

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/306674"

Navigation menu