W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2017

Re: Credential Management API - Issue 75: Expose passwords to JavaScript

From: Jochen Eisinger <eisinger@google.com>
Date: Fri, 28 Apr 2017 09:19:23 +0000
Message-ID: <CALjhuicmg=csHjrvBwiiBP9z-uxT4T50W_BTgFyc+uQmjsoD5w@mail.gmail.com>
To: Devdatta Akhawe <dev.akhawe@gmail.com>, John Wilander <wilander@apple.com>
Cc: Dominic Battre <battre@google.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
Me again.

Note that we're currently targeting the M60 release for implementing this.
I'd really appreciate feedback on the PR, however, in the continued absence
of feedback, I'd propose to move forward with the PR.

best
-jochen

On Thu, Apr 27, 2017 at 8:20 AM Jochen Eisinger <eisinger@google.com> wrote:

> friendly ping?
>
> The PR is basically ready for merging, so it would be great to get the
> discussion kicked off..
>
> On Fri, Apr 21, 2017 at 12:49 PM Jochen Eisinger <eisinger@google.com>
> wrote:
>
>> Whatever works best for you! Since there are no comments yet on the
>> github issue, I think you can just chose where you start the discussion :)
>>
>> John, you mentioned some specific concerns on the phone call. Do you want
>> to summarize them, so we can get the discussion started?
>>
>> On Fri, Apr 21, 2017 at 3:59 AM Devdatta Akhawe <dev.akhawe@gmail.com>
>> wrote:
>>
>>> +1 to John. I find it much easier to track and join conversations on the
>>> list.
>>>
>>> On 19 April 2017 at 10:19, John Wilander <wilander@apple.com> wrote:
>>> > Thanks, Dominic! I was clearly behind on my email.
>>> >
>>> > For what it’s worth, I think a pure email conversation is easier for
>>> people
>>> > to join but I might just be old. :) What do people here think, should
>>> we
>>> > move all these kind of discussions to GitHub? The issue has no
>>> comments so
>>> > far.
>>> >
>>> >    Regards, John
>>> >
>>> >
>>> > On Apr 19, 2017, at 10:03 AM, Dominic Battre <battre@google.com>
>>> wrote:
>>> >
>>> > +wilander
>>> >
>>> > On Tue, Apr 18, 2017 at 3:32 PM, Dominic Battre <battre@google.com>
>>> wrote:
>>> >>
>>> >> Hi.
>>> >>
>>> >> As the Credential Management API is on the agenda for the next call, I
>>> >> would like to point to Issue 75: Expose passwords to JavaScript and
>>> the
>>> >> corresponding pull request.
>>> >>
>>> >> As this changes the security model and the API a bit, I would like to
>>> hear
>>> >> whether you have any questions or concerns regarding the PR or the
>>> >> justification. I am happy to explain this in the call.
>>> >>
>>> >> Best regards,
>>> >> Dominic
>>> >> --
>>> >> Google Germany GmbH - Erika-Mann-Str. 33 - 80636 München - Germany
>>> >> Registergericht und -nummer: Hamburg, HRB 86891
>>> >> Sitz der Gesellschaft: Hamburg
>>> >> Geschäftsführer: Matthew Scott Sucherman, Paul Terence Manicle
>>> >
>>> >
>>> >
>>> > --
>>> > Google Germany GmbH - Erika-Mann-Str. 33 - 80636 München - Germany
>>> > Registergericht und -nummer: Hamburg, HRB 86891
>>> > Sitz der Gesellschaft: Hamburg
>>> > Geschäftsführer: Matthew Scott Sucherman, Paul Terence Manicle
>>> >
>>> >
>>>
>>>
Received on Friday, 28 April 2017 09:20:15 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:22 UTC