Closed charlesconnell closed 10 years ago
AndrewMagliozzi
commented
10 years ago Good call.
On Tue, Jan 21, 2014 at 9:04 AM, Charles Connell notifications@github.comwrote:
This is very important as we're implementing a user system. Also we'll need it on beta for consistency.
— Reply to this email directly or view it on GitHubhttps://github.com/FinalsClub/karmaworld/issues/295 .
sethwoodworth
commented
10 years ago Does FinalsClub have a cert? We should add a rule to the browser plugin https-everywhere when this is going. On Jan 21, 2014 9:54 AM, "Andrew Magliozzi" notifications@github.com wrote:
Good call.
On Tue, Jan 21, 2014 at 9:04 AM, Charles Connell notifications@github.comwrote:
This is very important as we're implementing a user system. Also we'll need it on beta for consistency.
— Reply to this email directly or view it on GitHub< https://github.com/FinalsClub/karmaworld/issues/295> .
— Reply to this email directly or view it on GitHubhttps://github.com/FinalsClub/karmaworld/issues/295#issuecomment-32891528 .
AndrewMagliozzi
commented
10 years ago What's a cert? Is that an SSL certificate?
On Jan 21, 2014, at 10:54 AM, Seth Woodworth notifications@github.com wrote:
Does FinalsClub have a cert? We should add a rule to the browser plugin https-everywhere when this is going. On Jan 21, 2014 9:54 AM, "Andrew Magliozzi" notifications@github.com wrote:
Good call.
On Tue, Jan 21, 2014 at 9:04 AM, Charles Connell notifications@github.comwrote:
This is very important as we're implementing a user system. Also we'll need it on beta for consistency.
— Reply to this email directly or view it on GitHub< https://github.com/FinalsClub/karmaworld/issues/295> .
— Reply to this email directly or view it on GitHubhttps://github.com/FinalsClub/karmaworld/issues/295#issuecomment-32891528 .
— Reply to this email directly or view it on GitHub.
sethwoodworth
commented
10 years ago Yeah, an ssl certificate
On Tue, Jan 21, 2014 at 11:47 AM, Andrew Magliozzi <notifications@github.com
wrote:
What's a cert? Is that an SSL certificate?
On Jan 21, 2014, at 10:54 AM, Seth Woodworth notifications@github.com wrote:
Does FinalsClub have a cert? We should add a rule to the browser plugin https-everywhere when this is going. On Jan 21, 2014 9:54 AM, "Andrew Magliozzi" notifications@github.com wrote:
Good call.
On Tue, Jan 21, 2014 at 9:04 AM, Charles Connell notifications@github.comwrote:
This is very important as we're implementing a user system. Also we'll need it on beta for consistency.
— Reply to this email directly or view it on GitHub< https://github.com/FinalsClub/karmaworld/issues/295> .
— Reply to this email directly or view it on GitHub< https://github.com/FinalsClub/karmaworld/issues/295#issuecomment-32891528>
.
— Reply to this email directly or view it on GitHub.
— Reply to this email directly or view it on GitHubhttps://github.com/FinalsClub/karmaworld/issues/295#issuecomment-32903792 .
btbonval
commented
10 years ago @charlesconnell No thumbs up or +1s on Github. What a lame social network.
Anyway, we should definitely have SSL for auth. Even if we aren't doing local auth, the session keys shouldn't be in plain text. Once SSL is implemented, we'll want to reject (and remove sessions of) users who are trying to use session cookies outside SSL.
AndrewMagliozzi
commented
10 years ago FYI, free certs here:
btbonval
commented
10 years ago Many domain registrars will supply a handful of SSL certs gratis. Worth checking the registrar (I think Andrew said it was GoDaddy?) as well.
On Wed, Jan 22, 2014 at 12:49 PM, Andrew Magliozzi <notifications@github.com
wrote:
FYI, free certs here:
https://www.globalsign.com/ssl/ssl-open-source/
— Reply to this email directly or view it on GitHubhttps://github.com/FinalsClub/karmaworld/issues/295#issuecomment-33048136 .
AndrewMagliozzi
commented
10 years ago got the free wildcard cert and its ready to roll on Beta and Prod...
This is very important as we're implementing a user system. Also we'll need it on beta for consistency.