Modify

Opened 9 years ago

Closed 4 years ago

#6171 closed enhancement (fixed)

Improve OAuth message in wizard

Reported by: skyper Owned by: simon04
Priority: normal Milestone: 16.02
Component: Core Version: tested
Keywords: oauth prefer warning Cc:

Description (last modified by skyper)

Under communication Preferences using OAUTH it says that the passwd is still once transmitted as plain text.

Either this message is wrong or OAUTH should use ssl as the server provides it now.

Thanks a lot
skyper

Attachments (0)

Change History (10)

comment:1 Changed 8 years ago by skyper

At least in German the warning below the pw line states that oauth uses a safe connection. What is meant with safe ?

Last edited 8 years ago by skyper (previous) (diff)

comment:2 Changed 8 years ago by stoecker

Resolution: fixed
Status: newclosed

"Secure" is the "S" in SSL.

comment:3 Changed 8 years ago by skyper

Resolution: fixed
Status: closedreopened

Why does JOSM warn about a secure connection ?

Think the bottom box should rather say "Note" or "Info" but not "Warning: using secure connection".

At least in German it is that way.

comment:4 Changed 8 years ago by stoecker

If I remember right it does not warn about a secure connection, but about the fact, that JOSM connects to webspace emulating a user access.

comment:5 in reply to:  4 Changed 8 years ago by skyper

Replying to stoecker:

If I remember right it does not warn about a secure connection, but about the fact, that JOSM connects to webspace emulating a user access.

You are right, but I think it is misleading if you warn about one secured login and on the other hand only have the same word "warning" on the "normal" login methode which should be disabled or at least been moved to the right that oauth is the default behaviour.

Also a link to oauth on your first upload would be nice and the warning about unsecure connection should be highlighted in this window, too.

Thanks

comment:6 Changed 8 years ago by skyper

Keywords: prefere warning added; ssl removed
Priority: normalmajor
Summary: use ssl with OAUTHprefere OAUTH in favour of "normal Login" and redisign warnings (WAS: use ssl with OAUTH)

comment:7 Changed 8 years ago by skyper

Summary: prefere OAUTH in favour of "normal Login" and redisign warnings (WAS: use ssl with OAUTH)prefere OAUTH in favour of "normal Login" and redesign warnings (WAS: use ssl with OAUTH)

comment:8 Changed 7 years ago by skyper

Description: modified (diff)
Keywords: prefer added; prefere removed
Summary: prefere OAUTH in favour of "normal Login" and redesign warnings (WAS: use ssl with OAUTH)prefer OAUTH in favour of "normal Login" and redesign warnings (WAS: use ssl with OAUTH)

comment:9 Changed 4 years ago by simon04

Milestone: 16.02
Owner: changed from team to simon04
Priority: majornormal
Status: reopenednew
Summary: prefer OAUTH in favour of "normal Login" and redesign warnings (WAS: use ssl with OAUTH)Improve OAuth message in wizard

Currently it says (on a light yellow background):

Warning: JOSM does login once using a secure connection.

what about (on a light green background):

Note: JOSM does login once using a secure connection.


For favouring OAuth over HTTP Basic → #7612.

comment:10 Changed 4 years ago by simon04

Resolution: fixed
Status: newclosed

In 9350/josm:

fix #6171 - Improve OAuth message in wizard

Since OAuth is considered safer than Basic authentication,

  • change background color to light green (instead of yellow)
  • drop "Warning: JOSM does login once using a secure connection." completely

Modify Ticket

Change Properties
Set your email in Preferences
Action
as closed The owner will remain simon04.
as The resolution will be set.
The resolution will be deleted.

Add Comment


E-mail address and name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.