Store log in from WebDM

Sergio Schvezov sergio.schvezov at canonical.com
Thu Apr 9 20:30:45 UTC 2015


On Thu, Apr 2, 2015 at 7:03 PM, Stephen Stewart <
stephen.stewart at canonical.com> wrote:

> On 2 April 2015 at 19:57, Alexander Sack <asac at canonical.com> wrote:
> > On Thu, Apr 2, 2015 at 6:52 PM, Martin Albisetti
> > <martin.albisetti at canonical.com> wrote:
> >> Hi,
> >>
> >> A while back there was a discussion around implementing logging into
> >> the store (or the device, for that matter) using WebDM.
> >> The feature was paused due to the fact that the connection between the
> >> browser and the device was over unencrypted http, and the current UX
> >> of ssl-on-local-networks is not great.
> >>
> >> I think we'll need to fix this soon. While we may be able to update
> >> WebDM psot 15.04 release due to it being an app and not in core (is
> >> that still correct?), I was thinking we might want to settle on how
> >> we're going to tackle this so we make sure whatever we might need
> >> ships in core in 15.04.
> >>
> >> AFAIK, there are 2 options:
> >> 1) Use a proxy server on the internet that has proper SSL to configure
> >> the account. If you need to authenticate to the store, you have an
> >> internet connection anyway. This won't work, however, for local
> >> authentication.
> >> 2) Self-signed cert that people have to accept, with the possibility
> >> of printing part of the fingerprint on the physical device for those
> >> who want to verify it (or a verification via ssh). Most users will
> >> ignore and accept it, but it would be good to have something available
> >> for the more cautious crowd.
> >>
> >> Are there any other smart ways of doing a secure connection with a
> >> standard browsers to a service hosted in a local network?
> >
> > What do other home appliances in the market do here?
> >
> > My wifi router seems to not care. I configure it through
> > http://local.domain. Of course, that one is special because it knows
> > that I am accessing it through WPA at least...
>
> Synology DSM has a UI for the user to create a self signed cert when
> enabling https, however there are no 'pay for' packages in DSM, all
> free.
>
> https://www.synology.com/en-us/knowledgebase/tutorials/611


In step 4 here, you still get the certificate trust issue though.


>
> https://www.synology.com/en-us/dsm/5.1/live_demo
>
> >
> >>
> >>
> >> --
> >> Martin
> >>
> >> --
> >> snappy-devel mailing list
> >> snappy-devel at lists.ubuntu.com
> >> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/snappy-devel
> >
> > --
> > snappy-devel mailing list
> > snappy-devel at lists.ubuntu.com
> > Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/snappy-devel
>
> --
> snappy-devel mailing list
> snappy-devel at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/snappy-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/snappy-devel/attachments/20150409/2206bb67/attachment.html>


More information about the snappy-devel mailing list