Please provide a way to ask for read-only tokens (just like launchpad)
Bug #582327 reported by
Michael Vogt
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Canonical SSO provider |
Confirmed
|
High
|
Unassigned | ||
Bug Description
I use the ubuntu sso service from software-center for the ratings&reviews service. The token I acquire is only used to verify that the user actually exists and to get the user name. I would like to ask ubuntu SSO to give me a read-only token that can not be used to e.g. reset password or change mail address or similar things because it does not need to do any of this.
| Changed in canonical-identity-provider: | |
| importance: | Undecided → High |
| status: | New → Confirmed |
| milestone: | none → 2.6.0 |
| Changed in canonical-identity-provider: | |
| milestone: | 2.6.0 → 2.7.0 |
| tags: | added: 3sp |
| tags: |
added: sp-3 removed: 3sp |
| Changed in canonical-identity-provider: | |
| assignee: | nobody → David Owen (dsowen) |
| Changed in canonical-identity-provider: | |
| assignee: | David Owen (dsowen) → Stuart Metcalfe (stuartmetcalfe) |
| status: | Confirmed → Incomplete |
Revision history for this message
| Stuart Metcalfe (stuartmetcalfe) wrote | #1 |
| Changed in canonical-identity-provider: | |
| assignee: | Stuart Metcalfe (stuartmetcalfe) → nobody |
| status: | Incomplete → Confirmed |
| milestone: | 2.7.0 → 2.10.0 |
Revision history for this message
| Stuart Metcalfe (stuartmetcalfe) wrote | #2 |
| Changed in canonical-isd-qa: | |
| milestone: | none → canonical-identity-provider+2.10.0 |
| Changed in canonical-isd-qa: | |
| importance: | Undecided → High |
| Changed in canonical-identity-provider: | |
| milestone: | 2.10.0 → none |
| milestone: | none → for-11.04 |
| Changed in canonical-identity-provider: | |
| milestone: | for-11.04 → none |
| Changed in canonical-identity-provider: | |
| status: | Confirmed → Incomplete |
| Changed in canonical-identity-provider: | |
| status: | Incomplete → Confirmed |
To post a comment you must log in.
At this point, writing values to the server doesn't seem to work due to an issue in lazr.restful (client?) so all tokens are read-only right now. We intend to do this work in line with enabling editing (bug #589353).