Confirmed users
282
edits
Identity/Firefox Accounts: Difference between revisions
Jump to navigation
Jump to search
→FAQ
No edit summary |
(→FAQ) |
||
| Line 32: | Line 32: | ||
==Why does Firefox Accounts require me to choose a password?== | ==Why does Firefox Accounts require me to choose a password?== | ||
The first relying service we're targeting with Firefox Accounts is Firefox Sync. Current Firefox Sync encrypts all your data in our servers, and we will continue to do so in the Firefox Accounts backed version of Sync. However, in the FxA backed version of Firefox Sync, we will encrypt your Sync data with a key derived from your Firefox Account password, instead a random key managed by the J-PAKE pairing protocol. This technique of using a password derived sync key is similar to how data protection in [https://support.google.com/chrome/answer/1181035?hl=en&ref_topic=1693469 Chrome Sync] works. | The first relying service we're targeting with Firefox Accounts is Firefox Sync. Current Firefox Sync encrypts all your data in our servers, and we will continue to do so in the Firefox Accounts backed version of Sync. However, in the FxA backed version of Firefox Sync, we will encrypt your Sync data with a key derived from your Firefox Account password, instead a random key managed by the J-PAKE pairing protocol. This technique of using a password derived sync key is similar to how data protection in [https://support.google.com/chrome/answer/1181035?hl=en&ref_topic=1693469 Chrome Sync] works. | ||
==How do relying Mozilla services authenticate an FxA user?== | ==How do relying Mozilla services authenticate an FxA user?== | ||
Two ways: | |||
* BrowserID assertions | |||
* Oauth2 (coming soon: https://github.com/mozilla/fxa-oauth-server) | |||
==How does a user reset her Firefox Account password?== | ==How does a user reset her Firefox Account password?== | ||
| Line 56: | Line 44: | ||
Persona is not intended to provide you with a new account, and it's not a new account system. Persona is a federated login protocol. You use Persona to log in to relying sites, and it's not intended that you need to "sign up" for Persona before you can use it. If you would need to sign up for anything, you would need to create an account at an IdP that supports Persona. | Persona is not intended to provide you with a new account, and it's not a new account system. Persona is a federated login protocol. You use Persona to log in to relying sites, and it's not intended that you need to "sign up" for Persona before you can use it. If you would need to sign up for anything, you would need to create an account at an IdP that supports Persona. | ||
One | One confusing point about Persona today is a service called the "Persona Fallback", which serves as a proxy IdP if your actual IdP doesn't support Persona (or isn't bridged), which just about every IdP except for Google and Yahoo. In this case, you currently have to sign up for a "Persona Fallback Account" (i.e. choose a password and verify your email) to use Persona. | ||
But a Persona Fallback Account is not a Persona Account, it's not the long term vision of Persona, and that's not supposed to be the happy path of the Persona login experience. | But a Persona Fallback Account is not a Persona Account, it's not the long term vision of Persona, and that's not supposed to be the happy path of the Persona login experience. | ||
| Line 90: | Line 78: | ||
* Firefox Marketplace | * Firefox Marketplace | ||
* Where's My Fox? | * Where's My Fox? | ||
* [https://wiki.mozilla.org/User:Dria/PiCL_Future_Ideas | * [https://wiki.mozilla.org/User:Dria/PiCL_Future_Ideas future ideas] | ||
== What do these terms mean? == | == What do these terms mean? == | ||