Changes

// get parameters of provisioning

navigator.id.beginProvisioning(function(email, cert_duration) {

// ... check if the current user is authenticated as 'email' ...

if (notAuthenticated()) {

navigator.id.raiseProvisioningFailure("user isn't authenticated");

}

// request a keypair be generated by browserid and get the public key

navigator.id.genKeyPair(function(pubkey) {

// ... interact with the server to sign the public key and get

// a certificate ...

var cert = someServerInteraction();

// pass the certificate back to BrowserID and complete the

// provisioining process