On Mon, Apr 20, 2015 at 8:18 AM, Vladislav Filippov <[email protected]> wrote:
> Hello all, > > This is a message for those who created *developer* FxA OAuth Clients > using the OAuth Console at the following urls: > > https://oauth-latest.dev.lcip.org/console/ > https://oauth-stable.dev.lcip.org/console/ > > We will be implementing stricter oauth client management permissions (on > development servers) in the next few days. > Existing clients, that were created without the new ownership model, will > not be visible when you login to the console. Those oauth clients will > still work, but you will not be able to view them or make changes to them. > > Once you see this change in place I suggest recreating the developer > client and updating your configuration. If you have a strong preference to > transfer one of the old developer clients please let me know. > We also have a few "built-in" developer clients that are always available, > see this list: > https://github.com/mozilla/fxa-dev/blob/master/roles/oauth/templates/config.json.j2 > For those reading along at home, production Fennec uses the "Fennec Dev" token at https://github.com/mozilla/fxa-dev/blob/master/roles/oauth/templates/config.json.j2#L199 . I see now that this, and a few other tokens, has "hashed secret" all zeroes. Is that an issue? Nick
_______________________________________________ Dev-fxacct mailing list [email protected] https://mail.mozilla.org/listinfo/dev-fxacct
