From user-return-23349-apmail-couchdb-user-archive=couchdb.apache.org@couchdb.apache.org Sat Jan 26 01:25:08 2013 Return-Path: X-Original-To: apmail-couchdb-user-archive@www.apache.org Delivered-To: apmail-couchdb-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 4052EEC4F for ; Sat, 26 Jan 2013 01:25:08 +0000 (UTC) Received: (qmail 10348 invoked by uid 500); 26 Jan 2013 01:25:06 -0000 Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org Received: (qmail 10308 invoked by uid 500); 26 Jan 2013 01:25:06 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 10298 invoked by uid 99); 26 Jan 2013 01:25:06 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 26 Jan 2013 01:25:06 +0000 X-ASF-Spam-Status: No, hits=2.2 required=5.0 tests=HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [128.18.84.132] (HELO brightmail-internal3.sri.com) (128.18.84.132) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 26 Jan 2013 01:24:57 +0000 X-AuditID: 80125484-b7f1a6d0000064e9-0f-51033053057d Received: from exchange-hub02.SRI.COM (exchange-hub02.SRI.COM [128.18.23.154]) (using TLS with cipher AES128-SHA (AES128-SHA/128 bits)) (Client did not present a certificate) by brightmail-internal3.sri.com (SRI Internal SMTP Gateway) with SMTP id 8F.4A.25833.35033015; Fri, 25 Jan 2013 17:24:35 -0800 (PST) Received: from EXCHANGE-DB08.SRI.COM ([fe80::a11e:7c21:6886:9a20]) by exchange-hub02.SRI.COM ([fe80::f097:c52f:a570:8336%12]) with mapi id 14.02.0298.004; Fri, 25 Jan 2013 17:24:31 -0800 From: Jim Klo To: "" Subject: Re: User registration and email confirmation on CouchDB Thread-Topic: User registration and email confirmation on CouchDB Thread-Index: AQHN+xiLnweY8Ioa8UqNzAP3kL+A+5hawMYAgAALnQCAAGf1gIAAE4OAgAAMToCAAAOLAA== Date: Sat, 26 Jan 2013 01:24:31 +0000 Message-ID: <685734FF-3F10-4218-B4B5-A93F7700C9A6@sri.com> References: <3E15E2BA-2931-472D-9CBA-6B5AED41B2BA@gmail.com> <89530030-C242-4A78-9A83-E222F00FC9AD@couchbase.com> In-Reply-To: <89530030-C242-4A78-9A83-E222F00FC9AD@couchbase.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [192.12.16.226] Content-Type: multipart/signed; boundary="Apple-Mail=_E6B61D49-FF8A-4BEC-B16A-D4F236333261"; protocol="application/pkcs7-signature"; micalg=sha1 MIME-Version: 1.0 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrKIsWRmVeSWpSXmKPExsXSICQ+SzfYgDnQ4GqTtEXnnr1sDoweGz8c ZwxgjOKySUnNySxLLdK3S+DK+DxlI1vB0eyK75MfsTQwnk3sYuTkkBAwkWhsnMMIYYtJXLi3 nq2LkYtDSGAnk8TnZe3sEM4+Ron9e2+xgFSxCchLHN7+gBnEFhGwlLi14CNYXFjAQWLurTVM EHFHiSmNEPUiAmESj3eeBtvAIqAqcXXecXYQm1fASmJ11xlGiAWtzBKPl/aBJTiBmmc+Xw+2 gBHopO+nIIYyC4hL3HoynwniVBGJhxdPs0HYohIvH/9jhbAVJdY1/QW7mllgCqPE5b4JLBDb BCVOznzCMoFRZBaSWbOQ1c1CUgdRlCSxfe9qNghbW2LZwtfMELaBxNPOV6yY4voSb97NYYKw TSVeH/3ICGFbS8z4dRBqjqLElO6H7AsYuVcxyiQVZaZnlOQmZubowqLUWK+4KFMvOT93EyM4 ckNadjCu2GV4iFGAg1GJh9fytEqAEGtiWXFl7iFGCQ5mJRFeGROmQCHelMTKqtSi/Pii0pzU 4kOM0hwsSuK8Ycb8/kIC6YklqdmpqQWpRTBZJg5OqQZGn9leU0+wc70v8VkqbcGWHxm/sffQ Yg5ZxYM8Olzrxf9bsz/Wjrm9Kq5x2WqNpEQvmdX3pgTIdyx7UGjxbaVU0bU1IWveij9Q27Ul pTClqbL8ob5wah+bawFT0q4PPZ6H8pNqbylmC8uUWwb41Lx859x24Ebiy18KNpMWPLtX8K06 ZAnfnO9KLMUZiYZazEXFiQCKpHeJ2AIAAA== X-Virus-Checked: Checked by ClamAV on apache.org --Apple-Mail=_E6B61D49-FF8A-4BEC-B16A-D4F236333261 Content-Type: multipart/alternative; boundary="Apple-Mail=_20FDF1EE-9359-4EB9-B2C1-F28FDE424E3C" --Apple-Mail=_20FDF1EE-9359-4EB9-B2C1-F28FDE424E3C Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=windows-1252 FWIW: BrowserID is now Mozilla Persona=85 and it is very awesome=85 = especially if you understand how the security works by making it = impossible for your IDP to track where you are logging in at (as opposed = to OpenID and OAuth). I use the plugin for my project (Learning Registry), however I strongly = recommend that you NOT use the included browserid.js in your CouchApps = or web apps, and link to the one provided by Mozilla. They change it = frequently enough that I've had it break authentication on more than one = occasion which which required hacking the plugin. The include is = available via http and https. - Jim Jim Klo Senior Software Engineer Center for Software Engineering SRI International t. @nsomnac On Jan 25, 2013, at 5:11 PM, Jens Alfke wrote: >=20 > On Jan 25, 2013, at 4:27 PM, Pulkit Singhal = wrote: >=20 >> @ Marcus - Thank you for your strong affirmation. I suppose I might = have >> let the lack of "we have email confirmation" being spelled out on the = main >> read me page, throw me off. >=20 > BrowserID addresses _are_ email addresses, and the authentication is = based on verifying ownership of the address. So any ID you get through = BrowserID login is a verified email address. >=20 > BrowserID is very cool; I=92ve been adding support to TouchDB and the = Couchbase Sync Gateway (aka BaseCouch). >=20 > =97Jens --Apple-Mail=_20FDF1EE-9359-4EB9-B2C1-F28FDE424E3C Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=windows-1252 FWIW: =  BrowserID is now Mozilla Persona=85 and it is very awesome=85 = especially if you understand how the security works by making it = impossible for your IDP to track where you are logging in at (as opposed = to OpenID and OAuth).

I use the plugin for my = project (Learning Registry), however I strongly recommend that you NOT = use the included browserid.js in your CouchApps or web apps, and link to = the one provided by Mozilla.  They change it frequently enough that = I've had it break authentication on more than one occasion which which = required hacking the plugin.  The include is available via http and = https.

- Jim

Jim Klo
Senior Software Engineer
Center for Software Engineering
SRI = International
t. = @nsomnac

On Jan 25, 2013, at 5:11 PM, Jens Alfke <jens@couchbase.com>
&n= bsp;wrote:


On Jan 25, 2013, at 4:27 PM, Pulkit Singhal <pulkitsinghal@gmail.com> = wrote:

@ Marcus - Thank you for your = strong affirmation. I suppose I might have
let the lack of "we have = email confirmation" being spelled out on the main
read me page, throw = me off.

BrowserID addresses _are_ email addresses, = and the authentication is based on verifying ownership of the address. = So any ID you get through BrowserID login is a verified email = address.

BrowserID is very cool; I=92ve been adding support to = TouchDB and the Couchbase Sync Gateway (aka = BaseCouch).

=97Jens

= = --Apple-Mail=_20FDF1EE-9359-4EB9-B2C1-F28FDE424E3C-- --Apple-Mail=_E6B61D49-FF8A-4BEC-B16A-D4F236333261 Content-Disposition: attachment; filename="smime.p7s" Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIJ/zCCBO0w ggRWoAMCAQICEDJaYyWeLlo372z82sws71YwDQYJKoZIhvcNAQEFBQAwgdgxCzAJBgNVBAYTAlVT MRowGAYDVQQKExFTUkkgSW50ZXJuYXRpb25hbDEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0 d29yazE7MDkGA1UECxMyVGVybXMgb2YgdXNlIGF0IGh0dHBzOi8vd3d3LnZlcmlzaWduLmNvbS9y cGEgKGMpMDIxMDAuBgNVBAsTJ0NsYXNzIDIgT25TaXRlIEluZGl2aWR1YWwgU3Vic2NyaWJlciBD QTEdMBsGA1UEAxMUU1JJIEludGVybmF0aW9uYWwgQ0EwHhcNMTIxMjIyMDAwMDAwWhcNMTMwNjIw MjM1OTU5WjCBwjEaMBgGA1UEChQRU1JJIEludGVybmF0aW9uYWwxKDAmBgNVBAsUH0luZm9ybWF0 aW9uIFRlY2hub2xvZ3kgU2VydmljZXMxRjBEBgNVBAsTPXd3dy52ZXJpc2lnbi5jb20vcmVwb3Np dG9yeS9DUFMgSW5jb3JwLiBieSBSZWYuLExJQUIuTFREKGMpOTkxEjAQBgNVBAMTCUphbWVzIEts bzEeMBwGCSqGSIb3DQEJARYPamltLmtsb0BzcmkuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEArcAbsKPrj0OY8eP+7cwOoUFxQcaL/voNDjR7tLexnZxcS97AyPjJokX5B4ayC7Mh oqvbgdFXf74mZIwKtoMIpf3SDopp68M2sTbhII4weZzn1yYLnVB8p1dH3h2hZDS+AHDY3qAchch0 C5aGQ/ahgJDAhgEiJ/NCbyFAboIhrDsyRS3XxyIlegbrYh9JYRaWdgoxZ21cdJG2xDUPyv/cLVam XKexUqXFLIKH7KKFFwAmVBj6BhZsjjgbMlC1AF3yV2TppULrSS1tDQdHWh5dL+Mw+QXS1O49W0hZ 7V1xFEXvqVj8SdGOaCAphVIU6RPAg7AEiAMynx/sdF5UMZsJuQIDAQABo4IBRjCCAUIwCQYDVR0T BAIwADCBrAYDVR0gBIGkMIGhMIGeBgtghkgBhvhFAQcXAjCBjjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cudmVyaXNpZ24uY29tL0NQUzBiBggrBgEFBQcCAjBWMBUWDlZlcmlTaWduLCBJbmMuMAMC AQEaPVZlcmlTaWduJ3MgQ1BTIGluY29ycC4gYnkgcmVmZXJlbmNlIGxpYWIuIGx0ZC4gKGMpOTcg VmVyaVNpZ24wCwYDVR0PBAQDAgWgMBEGCWCGSAGG+EIBAQQEAwIHgDBmBgNVHR8EXzBdMFugWaBX hlVodHRwOi8vb25zaXRlY3JsLnZlcmlzaWduLmNvbS9TUklJbnRlcm5hdGlvbmFsSW5mb3JtYXRp b25UZWNobm9sb2d5U2VydmljZXMvTGF0ZXN0Q1JMMA0GCSqGSIb3DQEBBQUAA4GBAMShtqQuVGbd YU5ZlqbBxf9ejMIfFgBIn7wubcTIyCAN2nIiDaAqmgS6eE8QiV6A2AchRz87CTQXDH+lkHaSgMiI MtW+n78v+kOLauCqau5iQ2vOwmBx+ypTVu1yV1JQ8GhwQl8hbHaKsVULtlBnPlbCMCgtf4XDBHOL CDLxEJN5MIIFCjCCBHOgAwIBAgIQFnwAoITZjkQu1m3KBG96NzANBgkqhkiG9w0BAQUFADCBwTEL MAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMTwwOgYDVQQLEzNDbGFzcyAyIFB1 YmxpYyBQcmltYXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIxOjA4BgNVBAsTMShjKSAx OTk4IFZlcmlTaWduLCBJbmMuIC0gRm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxHzAdBgNVBAsTFlZl cmlTaWduIFRydXN0IE5ldHdvcmswHhcNMDIwOTIzMDAwMDAwWhcNMTMxMjMxMjM1OTU5WjCB2DEL MAkGA1UEBhMCVVMxGjAYBgNVBAoTEVNSSSBJbnRlcm5hdGlvbmFsMR8wHQYDVQQLExZWZXJpU2ln biBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2UgYXQgaHR0cHM6Ly93d3cudmVy aXNpZ24uY29tL3JwYSAoYykwMjEwMC4GA1UECxMnQ2xhc3MgMiBPblNpdGUgSW5kaXZpZHVhbCBT dWJzY3JpYmVyIENBMR0wGwYDVQQDExRTUkkgSW50ZXJuYXRpb25hbCBDQTCBnzANBgkqhkiG9w0B AQEFAAOBjQAwgYkCgYEAzvnUwmuZmBSSAFVb0qoC0hhUL1a6f+AIHw5UpxW5oRTjsDtUzsCa+6Yg GvKUlisrnI/tPZFrupvHVNQjRj05fhHiABFinwlnCA7J80x3gZlBMwHrgoKYribJ1GTVmc1R0FmA B4KYzBeZjJZiNpqLEsEb0ORdzJYb2/UZazjL/fkCAwEAAaOCAegwggHkMBIGA1UdEwEB/wQIMAYB Af8CAQAwRAYDVR0gBD0wOzA5BgtghkgBhvhFAQcXAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3 dy52ZXJpc2lnbi5jb20vcnBhMDQGA1UdHwQtMCswKaAnoCWGI2h0dHA6Ly9jcmwudmVyaXNpZ24u Y29tL3BjYTItZzIuY3JsMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAQYwKAYDVR0RBCEw H6QdMBsxGTAXBgNVBAMTEFByaXZhdGVMYWJlbDItODIwHQYDVR0OBBYEFC1OfgnwbUVBEaxx2j87 9iZKf2RkMIHoBgNVHSMEgeAwgd2hgcekgcQwgcExCzAJBgNVBAYTAlVTMRcwFQYDVQQKEw5WZXJp U2lnbiwgSW5jLjE8MDoGA1UECxMzQ2xhc3MgMiBQdWJsaWMgUHJpbWFyeSBDZXJ0aWZpY2F0aW9u IEF1dGhvcml0eSAtIEcyMTowOAYDVQQLEzEoYykgMTk5OCBWZXJpU2lnbiwgSW5jLiAtIEZvciBh dXRob3JpemVkIHVzZSBvbmx5MR8wHQYDVQQLExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrghEAuS9g zIifoXpGCbhbcGyKrzANBgkqhkiG9w0BAQUFAAOBgQBocPsx9foGtLlCL8coGlfjYx8GhbDYbdQ3 8w0P/BIw4D49KhAocMcivLESZiV8YYYFFx+ozAPtg0j0knx+tcdeDvWmSefavP+aKlRhpAWk5Z+n c34jLXdw9/+6WveM/OQQbPbd8asD6BsLcFlRm68KZY8kk7SjlsP1S6rQBiCX8jGCBHswggR3AgEB MIHtMIHYMQswCQYDVQQGEwJVUzEaMBgGA1UEChMRU1JJIEludGVybmF0aW9uYWwxHzAdBgNVBAsT FlZlcmlTaWduIFRydXN0IE5ldHdvcmsxOzA5BgNVBAsTMlRlcm1zIG9mIHVzZSBhdCBodHRwczov L3d3dy52ZXJpc2lnbi5jb20vcnBhIChjKTAyMTAwLgYDVQQLEydDbGFzcyAyIE9uU2l0ZSBJbmRp dmlkdWFsIFN1YnNjcmliZXIgQ0ExHTAbBgNVBAMTFFNSSSBJbnRlcm5hdGlvbmFsIENBAhAyWmMl ni5aN+9s/NrMLO9WMAkGBSsOAwIaBQCgggJiMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJ KoZIhvcNAQkFMQ8XDTEzMDEyNjAxMjQzNFowIwYJKoZIhvcNAQkEMRYEFF4l2MibvqruRHpLk6ly 3fIGK1sfMIH+BgkrBgEEAYI3EAQxgfAwge0wgdgxCzAJBgNVBAYTAlVTMRowGAYDVQQKExFTUkkg SW50ZXJuYXRpb25hbDEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazE7MDkGA1UECxMy VGVybXMgb2YgdXNlIGF0IGh0dHBzOi8vd3d3LnZlcmlzaWduLmNvbS9ycGEgKGMpMDIxMDAuBgNV BAsTJ0NsYXNzIDIgT25TaXRlIEluZGl2aWR1YWwgU3Vic2NyaWJlciBDQTEdMBsGA1UEAxMUU1JJ IEludGVybmF0aW9uYWwgQ0ECEDJaYyWeLlo372z82sws71YwggEABgsqhkiG9w0BCRACCzGB8KCB 7TCB2DELMAkGA1UEBhMCVVMxGjAYBgNVBAoTEVNSSSBJbnRlcm5hdGlvbmFsMR8wHQYDVQQLExZW ZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2UgYXQgaHR0cHM6Ly93 d3cudmVyaXNpZ24uY29tL3JwYSAoYykwMjEwMC4GA1UECxMnQ2xhc3MgMiBPblNpdGUgSW5kaXZp ZHVhbCBTdWJzY3JpYmVyIENBMR0wGwYDVQQDExRTUkkgSW50ZXJuYXRpb25hbCBDQQIQMlpjJZ4u WjfvbPzazCzvVjANBgkqhkiG9w0BAQEFAASCAQArNP7nkecF0iw8yZUvbUMR14IEghaOyfzwRh2H J9sqmlpyv9gwyS3zGJJJqAQ2T9uI/Mov9gVifsyPwVH+FaKPvP94xuK3OpV+nDb7gE1p59ZuK2f6 O/ld9dI17ZeJdCMHx4RFFWwzYH4MnRyQEtvvcHcu57LSTPmJYPTqCw9qBMaLM+Yho2BDKj9n+NHD tJJg2UZbRUvhNyChLH5AJDEuyWLVdsk4WN3BgLxugpY1g2pf6qvhgUzkPaasdaEpEjyRAZyc8g8+ gGe2UVx2W+DOr0Tf7/uA2UnAwbxj+tAO3Xqesi3e0koDE6oJjRXJVLcn8UpNl3gDk/TBwro1WibV AAAAAAAA --Apple-Mail=_E6B61D49-FF8A-4BEC-B16A-D4F236333261--