how to use <keygen> in tornado?
31 views
Skip to first unread message
aliane abdelouahab
Apr 7, 2013, 6:28:24 PM4/7/13
to Tornado Web Server
HTML5 supports <keygen> to make a secret key, how this is useful with
tornado?
tornado?
Ben Darnell
Apr 7, 2013, 8:28:51 PM4/7/13
to Tornado Mailing List
The keygen tag is not actually new in html5 - it was originally a netscape-only tag that has been added to the spec because html5 is about documenting what browsers actually do. Browsers are not required to implement keygen in a useful way; IE doesn't support it and doesn't intend to, so it's probably not that useful (for background see http://blog.whatwg.org/this-week-in-html5-episode-35). If you can live with limited browser support the most complete technical documentation appears to be here: http://lists.whatwg.org/pipermail/whatwg-whatwg.org/attachments/20080714/07ea5534/attachment.txt
-Ben
On Sun, Apr 7, 2013 at 6:28 PM, aliane abdelouahab <alabde...@gmail.com> wrote:
HTML5 supports <keygen> to make a secret key, how this is useful with
tornado?
--
You received this message because you are subscribed to the Google Groups "Tornado Web Server" group.
To unsubscribe from this group and stop receiving emails from it, send an email to python-tornad...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
aliane abdelouahab
Apr 8, 2013, 2:07:08 PM4/8/13
to Tornado Web Server
the problem of IE is that it blocks users web dev from moving! now
with Android and iOS i think that IE will be negligible ?
so from what i see i must activate SSL ? then if i do, does Tornado
understand the key? (i assume that the application will warn users if
IE is found)
On 8 avr, 01:28, Ben Darnell <b...@bendarnell.com> wrote:
> The keygen tag is not actually new in html5 - it was originally a
> netscape-only tag that has been added to the spec because html5 is about
> documenting what browsers actually do. Browsers are not required to
> implement keygen in a useful way; IE doesn't support it and doesn't intend
> to, so it's probably not that useful (for background seehttp://blog.whatwg.org/this-week-in-html5-episode-35). If you can live
with Android and iOS i think that IE will be negligible ?
so from what i see i must activate SSL ? then if i do, does Tornado
understand the key? (i assume that the application will warn users if
IE is found)
On 8 avr, 01:28, Ben Darnell <b...@bendarnell.com> wrote:
> The keygen tag is not actually new in html5 - it was originally a
> netscape-only tag that has been added to the spec because html5 is about
> documenting what browsers actually do. Browsers are not required to
> implement keygen in a useful way; IE doesn't support it and doesn't intend
> with limited browser support the most complete technical documentation
> appears to be here:http://lists.whatwg.org/pipermail/whatwg-whatwg.org/attachments/20080...
>
> -Ben
>
> On Sun, Apr 7, 2013 at 6:28 PM, aliane abdelouahab
> <alabdeloua...@gmail.com>wrote:
> -Ben
>
> On Sun, Apr 7, 2013 at 6:28 PM, aliane abdelouahab
Russ Weeks
Apr 8, 2013, 2:23:42 PM4/8/13
to python-...@googlegroups.com
Aliane,
If you want a secure link between Tornado and the browser, use SSL. That's all there is to it. It will work in all browsers, even IE! Ignore the keygen element.
Look at the documentation for ssl_options here:
You will probably want to start by creating a self-signed certificate and key file; Google to find instructions for your platform.
-Russ
aliane abdelouahab
Apr 8, 2013, 2:48:23 PM4/8/13
to Tornado Web Server
thank you
i was searching about <keygen> element because i've done a small e-
commerce application, and because in the report i talked about
security, and html5, so i guess i should ignore the <keygen> element?
On 8 avr, 19:23, Russ Weeks <rwe...@newbrightidea.com> wrote:
> Aliane,
>
> If you want a secure link between Tornado and the browser, use SSL. That's
> all there is to it. It will work in all browsers, even IE! Ignore the
> keygen element.
>
> Look at the documentation for ssl_options here:http://www.tornadoweb.org/en/branch2.4/httpserver.html?highlight=ssl_...
i was searching about <keygen> element because i've done a small e-
commerce application, and because in the report i talked about
security, and html5, so i guess i should ignore the <keygen> element?
On 8 avr, 19:23, Russ Weeks <rwe...@newbrightidea.com> wrote:
> Aliane,
>
> If you want a secure link between Tornado and the browser, use SSL. That's
> all there is to it. It will work in all browsers, even IE! Ignore the
> keygen element.
>
>
> You will probably want to start by creating a self-signed certificate and
> key file; Google to find instructions for your platform.
>
> -Russ
>
> On Mon, Apr 8, 2013 at 11:07 AM, aliane abdelouahab <alabdeloua...@gmail.com
> You will probably want to start by creating a self-signed certificate and
> key file; Google to find instructions for your platform.
>
> -Russ
>
aliane abdelouahab
Apr 8, 2013, 3:09:19 PM4/8/13
to Tornado Web Server
found it
it seems that <keygen> works with Netscape Certificate Server
http://pki.fedoraproject.org/wiki/PKI_History
http://support.microsoft.com/kb/190282
it seems that <keygen> works with Netscape Certificate Server
http://pki.fedoraproject.org/wiki/PKI_History
http://support.microsoft.com/kb/190282
Reply all
Reply to author
Forward
0 new messages