Make auth tokens shorter so they can be entered manually
Bug #589335 reported by
Stuart Metcalfe
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical SSO provider |
Fix Released
|
High
|
David Owen |
Bug Description
Auth tokens are currently long and only able to be claimed by following a link from an email in a web browser. We need to remove both of these things as hard requirements to enable more complete desktop integration. The first step is to use much shorter tokens (4 characters is an initial suggestion) which are easier to re-type or read from more limited devices and provide a field on the 'sent' notification page to enter the token. The same system should be used in all places where auth tokens are required. We also need to remove the dependency on the same browser session being used to claim the token.
Testcase added to ISD_143
Related branches
lp://staging/~canonical-isd-hackers/canonical-identity-provider/bug_589335_auth_tokens
- Canonical ISD hackers: Pending requested
-
Diff: 1395 lines (+506/-196)22 files modifieddoctests/stories/openid/per-version/sso-workflow-complete.txt (+2/-2)
doctests/stories/openid/per-version/sso-workflow-register.txt (+1/-1)
doctests/stories/openid/per-version/sso-workflow-reset-password.txt (+1/-1)
doctests/stories/sso-server/standalone-login.txt (+172/-46)
identityprovider/forms.py (+20/-1)
identityprovider/models/authtoken.py (+40/-4)
identityprovider/templates/enter_token.html (+37/-0)
identityprovider/templates/launchpad/email/forgottenpassword.txt (+4/-0)
identityprovider/templates/launchpad/email/newuser.txt (+4/-0)
identityprovider/templates/launchpad/email/validate-email.txt (+4/-0)
identityprovider/templates/registration/confirm_new_account.html (+1/-1)
identityprovider/templates/registration/email_sent.html (+16/-6)
identityprovider/templates/registration/reset_password.html (+1/-1)
identityprovider/templates/ubuntu/email/forgottenpassword.txt (+4/-0)
identityprovider/templates/ubuntu/email/newuser.txt (+4/-0)
identityprovider/templates/ubuntu/email/validate-email.txt (+4/-0)
identityprovider/tests/test_views_ui.py (+79/-93)
identityprovider/tests/utils.py (+2/-0)
identityprovider/urls.py (+9/-4)
identityprovider/views/account.py (+11/-5)
identityprovider/views/ui.py (+79/-31)
identityprovider/views/utils.py (+11/-0)
lp://staging/~canonical-isd-hackers/canonical-identity-provider/token_tweaks
- Anthony Lenton (community): Approve
-
Diff: 308 lines (+52/-49)15 files modifiedidentityprovider/forms.py (+1/-1)
identityprovider/templates/enter_token.html (+4/-4)
identityprovider/templates/launchpad/email/email-validation-token.txt (+1/-1)
identityprovider/templates/launchpad/email/forgottenpassword.txt (+5/-5)
identityprovider/templates/launchpad/email/newuser.txt (+5/-5)
identityprovider/templates/launchpad/email/validate-email.txt (+5/-5)
identityprovider/templates/registration/bad_token.html (+3/-3)
identityprovider/templates/registration/email_sent.html (+3/-3)
identityprovider/templates/registration/logout_to_confirm.html (+2/-2)
identityprovider/templates/ubuntu/email/email-validation-token.txt (+1/-1)
identityprovider/templates/ubuntu/email/forgottenpassword.txt (+5/-5)
identityprovider/templates/ubuntu/email/newuser.txt (+5/-5)
identityprovider/templates/ubuntu/email/validate-email.txt (+5/-5)
identityprovider/tests/test_views_ui.py (+1/-1)
identityprovider/views/ui.py (+6/-3)
lp://staging/~canonical-isd-hackers/canonical-identity-provider/hyphenation
- Ricardo Kirkner (community): Approve
-
Diff: 247 lines (+25/-25)15 files modifiedidentityprovider/forms.py (+1/-1)
identityprovider/models/authtoken.py (+1/-1)
identityprovider/templates/enter_token.html (+5/-5)
identityprovider/templates/launchpad/email/email-validation-token.txt (+1/-1)
identityprovider/templates/launchpad/email/forgottenpassword.txt (+1/-1)
identityprovider/templates/launchpad/email/newuser.txt (+1/-1)
identityprovider/templates/registration/bad_token.html (+3/-3)
identityprovider/templates/registration/email_sent.html (+2/-2)
identityprovider/templates/registration/logout_to_confirm.html (+2/-2)
identityprovider/templates/ubuntu/email/email-validation-token.txt (+1/-1)
identityprovider/templates/ubuntu/email/forgottenpassword.txt (+1/-1)
identityprovider/templates/ubuntu/email/newuser.txt (+1/-1)
identityprovider/tests/test_views_ui.py (+1/-1)
identityprovider/views/account.py (+3/-3)
identityprovider/views/ui.py (+1/-1)
description: | updated |
Changed in canonical-identity-provider: | |
assignee: | nobody → Łukasz Czyżykowski (lukasz-czyzykowski) |
Changed in canonical-identity-provider: | |
assignee: | Łukasz Czyżykowski (lukasz-czyzykowski) → David Owen (dsowen) |
Changed in canonical-identity-provider: | |
status: | Confirmed → In Progress |
Changed in canonical-identity-provider: | |
milestone: | 2.6.0 → 2.7.0 |
Changed in canonical-identity-provider: | |
status: | In Progress → Fix Committed |
Changed in canonical-identity-provider: | |
status: | Fix Committed → In Progress |
Changed in canonical-identity-provider: | |
status: | In Progress → Fix Committed |
description: | updated |
description: | updated |
Changed in canonical-isd-qa: | |
milestone: | none → canonical-identity-provider+2.7.0 |
Changed in canonical-isd-qa: | |
milestone: | canonical-identity-provider+2.7.0 → 2.7.0 |
Changed in canonical-isd-qa: | |
milestone: | 2.7.0 → canonical-identity-provider+2.7.0 |
Changed in canonical-identity-provider: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Note to QA: will need a test case associated and pssible refactoring of old testcases