Re: [OSM-dev] Usage of the standard dev server

2016-02-04 Thread markus schnalke
Hoi. [2016-02-04 09:15] Paul Norman > On 2/4/2016 8:41 AM, markus schnalke wrote: > [2016-02-04 14:43] Tom Hughes > > > > If you're developing a new editor you should be using OAuth not HTTP > > basic auth. > > If I would be developing a

Re: [OSM-dev] Usage of the standard dev server

2016-02-04 Thread Paul Norman
On 2/4/2016 1:47 PM, markus schnalke wrote: Instead of transmitting the username and password, the oauth token and secret are transmitted. How is that different, besides the ability of restricting the permitted actions? No, the token and secret are used to sign the request. Someone who MITMs

Re: [OSM-dev] Usage of the standard dev server

2016-02-04 Thread markus schnalke
Hoi. > Adding https is also a bit tricky at the moment I think, but should be > possible if/when we switch to letsencrypt. That would be great and important, because HTTP Basic Authentication should not be done unencrypted. In developing an editor, one would want to ensure that the API is

Re: [OSM-dev] Usage of the standard dev server

2016-02-04 Thread Tom Hughes
On 03/02/16 21:51, markus schnalke wrote: Adding https is also a bit tricky at the moment I think, but should be possible if/when we switch to letsencrypt. That would be great and important, because HTTP Basic Authentication should not be done unencrypted. In developing an editor, one would

Re: [OSM-dev] Usage of the standard dev server

2016-02-04 Thread markus schnalke
[2016-02-04 14:43] Tom Hughes > > If you're developing a new editor you should be using OAuth not HTTP > basic auth. If I would be developing a *web* editor, then yes, of course ... but I am working on a command line editor. (You'll hear from that project soon.) meillo

Re: [OSM-dev] Usage of the standard dev server

2016-02-04 Thread Ian Dees
On Thu, Feb 4, 2016 at 11:41 AM, markus schnalke wrote: > [2016-02-04 14:43] Tom Hughes > > > > If you're developing a new editor you should be using OAuth not HTTP > > basic auth. > > If I would be developing a *web* editor, then yes, of course ... but > I

[OSM-dev] Usage of the standard dev server

2016-01-11 Thread Pichler, Markus
Hello everybody, I have a question regarding the usage of the dev server reachable under http://api06.dev.openstreetmap.org/. I wanted to use this server for some JOSM testing and did what was described here: http://wiki.openstreetmap.org/wiki/Sandbox_for_editing. It says on that page that the

Re: [OSM-dev] Usage of the standard dev server

2016-01-11 Thread Tom Hughes
On 11/01/16 13:16, Pichler, Markus wrote: It says on that page that the dev server is mostly empty, but if you go to the page http://api06.dev.openstreetmap.org/ it shows the entire world, just like the main openstreetmap.org site. However, if I do a download request in JOSM, it is empty. So my

Re: [OSM-dev] Usage of the standard dev server

2016-01-11 Thread Bryan Housel
Yes api06.dev.openstreetmap.org is a valid sandbox for editing, but the rails site hosted there loads tiles from the main tileserver. Because tile generation is such a resource intensive process, I don’t think there is a plan to generate and serve dev