Matthew A. Miller
Matthew A. Miller
Currently the FxA (and soon Kinto) configuration in use can only be changed by modifying the sources. In order to better support development, a build-time pref is desirable to select...
Occasionally when recording the telemetry event `fxaFailed` can itself fail. From instances where this failure occurs, it appears that a `fxa_uid` extra key is included but the registration only permits...
When clicking on the "Sign in" or "Sign up" buttons on the homepage (or welcome page), the FxA authentication page opens in a new window. However, there is no indication...
While README.md provides an overview of what a developer can do, it would be very helpful to have some stand-alone, immediately runnable/hackable examples people can start with. An appropriately open...
Add support for unencoded payloads ("b64" == false). Signing: - add ability to set the encoding for the payload ("base64url" | "unencoded" | "detached") - provide a manner to obtain...
The resulting object returned by jose.parse is different for "compact" formats versus "json" formats. Notably, "header" is returned by JSON formats but "all" is returned by compact formats. They should...
It would be very beneficial to have a command-line tool to do basic key generation, encrypt/decrypt, and sign/verify.
The current input validation for `origins` allows the value of each array element to be any string under 500 characters. However, this has implications that complicate other implementations (e.g., more...
The current implementation of `list()` returns all of the data for all of the items. There are security benefits to only providing all data for all items when that data...
In service to sync, implement the logic necesary to reconcile conflicts between the on-device stable data, locally pending changes, and remote pending changes. ## Related * #50 * #80 (basic...