Hi, I have two more questions:
1) https://docs.services.mozilla.com/token/apis.html#request-headers says that "Updated values of the X-Client-State will be rejected with an error status of “invalid-client-state” if: ... * The user’s IdP provides generation numbers in their identity certificates, and the changed client-state value does not correspond to an increase in generation number." What exactly are generation numbers and how are they created? 2) https://docs.services.mozilla.com/storage/apis-1.5.html#api-instructions says that "All requests must be signed using HAWK Authentication credentials obtained from the tokenserver." Which credentials are mentioned here? The "id" and "key" fields in the tokenserver response? If so, are they base64 decoded and directly fed into HAWK header generation process, or is there something more than just this? Thanks, Gabriel _______________________________________________ Sync-dev mailing list [email protected] https://mail.mozilla.org/listinfo/sync-dev
