Matjaž Horvat, @mathjazz
Earlier this morning, The Verge reported that a user in a Russian forum had obtained nearly 6.5 million passwords from the business networking site LinkedIn.
Hackers posted online what they say is login information for more than 450,000 Yahoo users.
Authenticate →
Public key →
← Signed public key
Assertion →(audience, expiry, signature)
← Session cookie
<script src="https://login.persona.org/include.js"></script>
navigator.id.watch({ loggedInUser: null, onlogin: function (assertion) { $.post('/login', {assertion: assertion}, function(data) { window.location = '/home'; } ); }, onlogout: function() { window.location = '/logout/; } });
navigator.id.watch({
loggedInUser: null,
onlogin: function (assertion) {
$.post('/login',
{assertion: assertion},
function(data) {
window.location = '/home';
}
);
},
onlogout: function() {
window.location = '/logout/;
});
def verify_assertion(assertion): page = requests.post( 'https://verifier.login.persona.org/verify', Data={ "assertion": assertion, "audience": 'http://mozilla.org'}) data = page.json return data.status == 'okay'
def verify_assertion(assertion):
page = requests.post(
'https://verifier.login.persona.org/verify',
Data={ "assertion": assertion,
"audience": 'http://mozilla.org'})
data = page.json
return data.status == 'okay'
{ status: "okay", audience: "http://mozilla.org", expires: 1244849682560, email: "matjaz.horvat@gmail.com", issuer: "login.persona.org", }
{
status: "okay",
audience: "http://mozilla.org",
expires: 1244849682560,
email: "matjaz.horvat@gmail.com",
issuer: "login.persona.org",
navigator.id.request()
When login button clicked, open Persona dialog
navigator.id.logout()
When logout button clicked, call onlogout() callback
login.persona.org
navigator.id.*
verifier.login.persona.org
Francois Marier
Lloyd Hilaiel
Shane Tomlinson
Dan Callahan
