Comment 4 for bug 387297
Revision history for this message
| Stephan RĂ¼gamer (sruegamer) wrote Re: manage-credentials should not ask for Launchpad password directly | #4 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Good morning,
I would like to give my input about the problems with the web browser oriented "Sign into Launchpad" approach for UI clients.
Actually, I don't think there is a difference between trusting a webbrowser and an UI client. As for leonov, we don't save any passwords somewhere in the code...this is something we need to avoid.
Yes, the password is clear-text in saved in a variable, but only as long as we need it to authenticate to launchpad. Then it's the developers task to remove those bits.
Anyhow, the problem we are approaching is, using the browser or the ui client, that you need to trust your network infrastructure, so that it really connects to launchpad and not to e.g. "vi /etc/hosts && <some internal ip> launchpad.net" or any other dns forgery.
The only way to do that, is to have openID, and to have a possibility to answer "yes, it's me who wants to sign into launchpad".
The approach with username + password is bad, but having no other chance to avoid a browser for ui clients, I think our leonov workaround is the best thing someone can do.
Regards,
\sh