Re: An initial editor's draft: high-level API from Alex Russell on 2013-02-20 (public-webcrypto@w3.org from February 2013)

From: Alex Russell <slightlyoff@google.com>
Date: Wed, 20 Feb 2013 15:19:13 +0000
To: David Dahl <ddahl@mozilla.com>
Cc: public-webcrypto <public-webcrypto@w3.org>, GALINDO Virginie <virginie.galindo@gemalto.com>, Harry Halpin <hhalpin@w3.org>, Wendy Seltzer <wseltzer@w3.org>, Thomas Roessler <tlr@w3.org>
Message-ID: <CANr5HFVHUoGvWfyC-Ug7aQHa5=MFQLjDcZxzKdq3Nf4=nwrKnw@mail.gmail.com>

Apologies for not responding to this thread sooner.

I have serious misgivings about the way this API has been structured. It
relies on events for one-time events, has opaque inverted control flow, and
uses very strange conventions (lower-cased constructable class names mixed
with create*() methods).

I think it needs, at a minimum, to be re-written based on Futures.

On Monday, January 28, 2013, David Dahl wrote:

> Hello All,
>
> An initial high-level API draft is here:
> https://dvcs.w3.org/hg/webcrypto-highlevel/raw-file/tip/Overview.html
>
> Naturally, this draft is missing a few things, details, etc. Some early
> feedback indicates that "sign" and "verify" are redundant with
> encryptAndSign and verifyAndDecrypt.
>
> The object and method naming needs work as well. Your feedback and
> criticism is eagerly awaited.
>
> Regards,
>
> David
>
>

Received on Wednesday, 20 February 2013 15:19:43 UTC