update binder documentation (was: token in the binder-daemon is not enforced)
Description
Environment
relates to
Activity
jose bollo March 3, 2020 at 5:12 PM
agreed
Teddy Zhai March 3, 2020 at 5:05 PM
I suggest to close this ticket.
If I understand correctly, token is replaced by the cynagora permission check.
It would be nice though to document an example to show how to configure cynagora + binder to enforce a check.
jose bollo March 2, 2020 at 4:28 PM
it has to do with token because the token must be validated when loa is checked. I'm going to check that tomorrow. From an other Jira ticket I guess that you compiled the binder without cyna(go)ra support. It explains why the token it not checked.
Teddy Zhai March 2, 2020 at 2:27 PM
thanks Jose,
tuto-2 requires authorization, but it has nothing to do with token, right? Its authorization is built in the application logic, i.e., checking password == "please" or not.
Ok, I dont see how the token is handled. I think at least my initial question in the ticket is resolved.
jose bollo March 2, 2020 at 1:15 PM
Hi @Teddy Zhai , since Icefish version, the management of token changed. It now relies on a third party to validate the token. In detail, is ask the permisson data for the virtual permission "urn:AGL:token:valid" granted to the current session.
On the other hand, the tutorial number one does not require any autorisation.
That is not the case of the tutorial number 2.
The documentation needs an update.
Details
Details
Assignee
Reporter
Contract ID
Components
Priority
Minor
For App developers, developing/testing Services first on x86 is common. In addition, they would like to test permission enforcement using cynagora.
Currently, there is no convenient way to do so, at least for ubuntu based desktop env.