[Bug 508351] Review Request: josm - java openstreetmap editor
bugzilla at redhat.com
bugzilla at redhat.com
Fri Apr 9 21:56:44 UTC 2010
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=508351
--- Comment #36 from Andrea Musuruane <musuruan at gmail.com> 2010-04-09 17:56:38 EDT ---
(In reply to comment #33)
> Please do not disable OAuth, until OSM can get some SSL security going your
> OSM password is sent in the clear every time you upload some changes. With
> OAuth your password is only sent in the clear once when the OAuth tokens are
> set up, thus reducing the risk that your OSM password is compromised.
The password is still sent in clear text as you noticed, even if only once per
session. I believe there is little value added until a secure channel (e.g.
https) will be used.
(In reply to comment #34)
> Created an attachment (id=405625)
--> (https://bugzilla.redhat.com/attachment.cgi?id=405625) [details]
> oauth build xml example
I tried this and it seems mockito is not yet available in Fedora.
Anyway it seems that JOSM is using v1.1 while latest upstream is v1.2.1.1. Are
these two API compatible? AFAIK Fedora should package the latest version.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the package-review
mailing list