View Issue Details

IDProjectCategoryView StatusLast Update
0005443Talermerchant frontend (blog)public2019-09-16 09:11
ReporterFlorian DoldAssigned ToFlorian Dold 
PrioritynormalSeverityminorReproducibilityhave not tried
Status resolvedResolutionwon't fix 
Product VersionSVN HEAD 
Target Version0.6Fixed in Version0.6 
Summary0005443: sub-resources should work without cookies
DescriptionSub-resources should include the order ID (and if needed the session ID) in their URL, so that the merchant can check if the user is authorized to view them.
TagsNo tags attached.

Activities

Florian Dold

2019-08-29 22:39

manager   ~0014822

This is not really something we want to do with the current merchant demo, as it's primarily session (=cookie) based. There is also nothing fundamental in the merchant APIs or the wallet that would prevent payments and sub-resources that are not bound to a session cookie.

Issue History

Date Modified Username Field Change
2018-09-26 20:16 Florian Dold New Issue
2018-09-26 20:16 Florian Dold Status new => assigned
2018-09-26 20:16 Florian Dold Assigned To => Florian Dold
2018-11-18 00:41 Christian Grothoff Product Version => SVN HEAD
2018-11-18 00:41 Christian Grothoff Target Version => 0.7
2019-08-29 22:39 Florian Dold Status assigned => resolved
2019-08-29 22:39 Florian Dold Resolution open => won't fix
2019-08-29 22:39 Florian Dold Note Added: 0014822
2019-09-16 09:11 Christian Grothoff Fixed in Version => 0.6
2019-09-16 09:11 Christian Grothoff Target Version 0.7 => 0.6