Return-Path: X-Original-To: apmail-shindig-dev-archive@www.apache.org Delivered-To: apmail-shindig-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id E924DE59C for ; Wed, 13 Feb 2013 22:23:12 +0000 (UTC) Received: (qmail 65474 invoked by uid 500); 13 Feb 2013 22:23:12 -0000 Delivered-To: apmail-shindig-dev-archive@shindig.apache.org Received: (qmail 65347 invoked by uid 500); 13 Feb 2013 22:23:12 -0000 Mailing-List: contact dev-help@shindig.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@shindig.apache.org Delivered-To: mailing list dev@shindig.apache.org Received: (qmail 65337 invoked by uid 99); 13 Feb 2013 22:23:11 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 13 Feb 2013 22:23:11 +0000 X-ASF-Spam-Status: No, hits=1.5 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of ddumont@gmail.com designates 209.85.217.180 as permitted sender) Received: from [209.85.217.180] (HELO mail-lb0-f180.google.com) (209.85.217.180) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 13 Feb 2013 22:23:03 +0000 Received: by mail-lb0-f180.google.com with SMTP id q12so1325161lbc.11 for ; Wed, 13 Feb 2013 14:22:41 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:content-type; bh=Pu3U4XdwVMzisXVgBdx4+vOSUEFEb96V/qwaS32PtT4=; b=TYGn42pYKquWzyJyb+oUhrvpc+P8G9DWiLtzoToe/dZcttUGJE9BGy8+qFqqnxsNER shhfa9rTUS5NCZDXopU5mvElWobNUzRwU1yik8Xg3edTyCkBSO8Q+3aYoLA4CNHnxYfd G85TlPESQPiqTnB9USqSv0dwN6JgJAyJZ9vFBsuWsWbg0u7as1acmc+X8JUPw5qqJZV+ Q2Sy/xz5yvsYo2dy29IjTM6VuaS0wyOPIrxDD/0Dlod0PPZXrcprcbyVaXcRF/Ev+FhS /+m8OYvyI/5RIDzDXq8BZ6AmL2/qhX9IbmucCLHvhqRv8r1DEMFHtAhYfwPB4g6ZFGFm Tucw== MIME-Version: 1.0 X-Received: by 10.152.46.17 with SMTP id r17mr21758106lam.47.1360794161497; Wed, 13 Feb 2013 14:22:41 -0800 (PST) Received: by 10.112.39.42 with HTTP; Wed, 13 Feb 2013 14:22:41 -0800 (PST) In-Reply-To: References: Date: Wed, 13 Feb 2013 17:22:41 -0500 Message-ID: Subject: Re: State of security tokens From: Dan Dumont To: dev@shindig.apache.org Content-Type: multipart/alternative; boundary=bcaec55241069bc4d204d5a2947e X-Virus-Checked: Checked by ClamAV on apache.org --bcaec55241069bc4d204d5a2947e Content-Type: text/plain; charset=UTF-8 Shindig should be able to take valid container tokens and mint new gadget tokens as-is. Container tokens will need to be minted by you somehow. You'll want to use the same crypter/codec and key that shindig will use to decode them. On Wed, Feb 13, 2013 at 9:20 AM, Doug Davies wrote: > I was reading this wiki page > > https://cwiki.apache.org/SHINDIG/security-tokens.html > > I know there has been some work on gadget refresh tokens in the 2.5 beta > releases. Can someone briefly tell me that state of refreshing both > container and gadget tokens in 2.5? Do either require that my > authentication server support the refresh token call? What am I required > to > implement and what should happen automatically? > > Thanks, > doug > --bcaec55241069bc4d204d5a2947e--