This repository has been archived by the owner on Jul 13, 2023. It is now read-only.
Support channel association with a JWT key #326
Assignees
Labels
Comments
|
To ease storage requirements and schema changes, a sha256 of the public key should be stored in the endpoint itself. To facilitate this endpoint writing/reading scheme, the endpoint will need a prefix indicating the version of the endpoint encoding. No prefix indicates legacy endpoint generation. Example: Where obscure() is the current method used to obscure data from casual discovery. The appropriate endpoint verifier is then run for each version. |
jrconlin
added a commit
that referenced
this issue
Feb 29, 2016
jrconlin
added a commit
that referenced
this issue
Feb 29, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes: #326
jrconlin
added a commit
that referenced
this issue
Feb 29, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes: #326
jrconlin
added a commit
that referenced
this issue
Feb 29, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes: #326
jrconlin
added a commit
that referenced
this issue
Feb 29, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes: #326
|
@jrconlin I'll send the subscription key as a Base64-encoded URL string, in the |
jrconlin
added a commit
that referenced
this issue
Feb 29, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes: #326
|
@kitcambridge yep, sounds good to me. |
jrconlin
added a commit
that referenced
this issue
Mar 2, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes: #326
jrconlin
added a commit
that referenced
this issue
Mar 2, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes #326
jrconlin
added a commit
that referenced
this issue
Mar 2, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes #326
jrconlin
added a commit
that referenced
this issue
Mar 3, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes #326
jrconlin
added a commit
that referenced
this issue
Mar 3, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes #326
jrconlin
added a commit
that referenced
this issue
Mar 3, 2016
Channels can include a public key when registering a new subscription channel. This public key should match the public key used to send subscription updates later. NOTE: this patch changes the format of the endpoint URLs, & the content of the endpoint URL token. This change also requires that ChannelIDs be normalized to dashed format, (e.g. a lower case, dash delimited string "deadbeef-0000-0000-deca-fbad11112222") This is the default mechanism used by Firefox for UUID generation. It is STRONGLY urged that clients normalize UUIDs used for ChannelIDs and User Agent IDs. While this should not break existing clients, additional testing may be required. Closes #326
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Channel subscriptions will allow association with a sender key per:
w3c/push-api#182
Our register command will need updating to support the additional information, and our channel-id scheme of a list of channels may need modification to store an additional crypto key with it.
The endpoint will need an additional check to ensure the sender key validates with the channel key if present.
Depends on: #325
The text was updated successfully, but these errors were encountered: