On Thu, Aug 1, 2013 at 6:21 PM, James Westby <[email protected]> wrote: > Hi, > > We've just deployed a change to staging that alters the way that access > control for downloads is done. Previously the request was just checked > for valid credentials, but now SCA is also consulted to ensure that the > user is able to download the file. This is to keep unpublished files > secret, so that developers can launch when they are ready, and also one > of the pre-requisites to being able to sell click packages. > > This shouldn't have much impact, but if you were testing with a file > that has had its entry in the SCA db deleted, you will no longer be able > to download it. Also, if the package isn't published, only the owner and > the reviewers will be able to download it. > > It is still possible to oauth sign the request using either headers or a > query string.
Signatures on the query string have stopped working for me, not sure if it's related to this change. I can provide a small python program that shows this issue. cheers, -- alecu -- Mailing list: https://launchpad.net/~ubuntu-appstore-developers Post to : [email protected] Unsubscribe : https://launchpad.net/~ubuntu-appstore-developers More help : https://help.launchpad.net/ListHelp
