[Authentication] Open Issue: Transient Collections
Stef Walter
stef-list at memberwebs.com
Mon Aug 31 19:23:18 PDT 2009
Michael Leupold wrote:
> Stef Walter schrieb:
>> One thing we haven't covered in the spec is collections that only live
>> for the user's current desktop login session.
>>
>> In gnome-keyring we have a 'session' keyring which does this. Do we want
>> to have something like this in the secrets API? Among other things, it
>> seems like it would be useful for browsers to create temporary collections.
>
> We currently don't have such a feature directly in KWallet but we do
> have KPasswdServer which caches authentication information for some time
> (actually not the whole session but less). What are session keyrings
> used for in GNOME?
Two reasons:
* Sharing: Multiple applications can share a secret in the
gnome-keyring 'session' keyring even though it won't be
permanently stored.
* Simplicity: So that GNOME apps can use the same code path for
both storing secrets long term and short term.
Also, I can imagine browsers using transient collections for things like
'incognito/private' mode, etc...
Do you think they'd be useful in KDE, perhaps used as a backend for
KPasswdServer?
Cheers,
Stef
More information about the Authentication
mailing list