Authentication

The authentication is using Firefox Accounts, to verify the OAuth2 bearer tokens on a remote server

OAuth Bearer token

Use the OAuth token with this header:

{
    "authorization": "Bearer <oauth_token>"
}

notes:If the token is not valid, this will result in a INVALID_TOKEN error response.

Firefox Account

Obtain the token

XXX: Endpoint still to be done.

The GET /v1/fxa-oauth/params endpoint can be used to get the configuration in order to trade the Firefox Account BrowserID with a Bearer Token. See Firefox Account documentation about this behavior.

$ http GET http://localhost:8000/v0/fxa-oauth/params -v

GET /v0/fxa-oauth/params HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
Host: localhost:8000
User-Agent: HTTPie/0.8.0


HTTP/1.1 200 OK
Content-Length: 103
Content-Type: application/json; charset=UTF-8
Date: Thu, 19 Feb 2015 09:28:37 GMT
Server: waitress

{
    "oauth_uri": "https://oauth-stable.dev.lcip.org",
    "scope": "remote-worker-server"
}