Mozilla Persona - Speaker Deck

Mozilla Persona

by vladikoff

Slide 1

Slide 1 text

@ Open Web Camp V Vlad Filippov

Slide 2

Slide 2 text

@vladikoff

Slide 3

Slide 3 text

Identity Team at Mozilla https://hacks.mozilla.org http://identity.mozilla.com Persona, Profile in the Cloud, Firefox Sign-in, Identity UX

Slide 4

Slide 4 text

• Mozilla Persona - a login system for the Web • Eliminates site-specific passwords • Use your email to sign in into websites • All open source • User privacy is one of the core goals Mozilla Persona Overview

Slide 5

Slide 5 text

Users • A better way to sign in Developers • Why Persona? • Persona API • Libraries & Plugins Identity Providers • BrowserID Protocol • Running your own IdP Mozilla Persona for ...

Slide 6

Slide 6 text

Persona for Users

Slide 7

Slide 7 text

Current state of sign-in

Slide 8

Slide 8 text

Current state of sign-in

Slide 9

Slide 9 text

Current state of sign-in

Slide 10

Slide 10 text

Mozilla Persona - A better way to sign in!

Slide 11

Slide 11 text

Mozilla Persona - A better way to sign in!

Slide 12

Slide 12 text

Persona - Manage addresses login.persona.org

Slide 13

Slide 13 text

Identity Bridging @yahoo.com accounts can login to Persona-enabled sites

Slide 14

Slide 14 text

Persona - Browser Support Tested with

Slide 15

Slide 15 text

Persona - Native on Firefox OS!

Slide 16

Slide 16 text

Firefox OS Demo

Slide 17

Slide 17 text

Persona for Developers

Slide 18

Slide 18 text

Building Sign In bad passwords challenging UX password reset recovery support security backup

Slide 19

Slide 19 text

Easy to use. Easy to implement in your apps or sites Federated Protocol & Decentralized No social profiles attached No need to store passwords No need to rely on third-parties Eliminate registration forms and more... Why Persona?

Slide 20

Slide 20 text

UX freedom Persona for developers

Slide 21

Slide 21 text

UX Prototypes Persona for developers

Slide 22

Slide 22 text

Persona for developers Translated & Localized

Slide 23

Slide 23 text

Persona at Mozilla

Slide 24

Slide 24 text

Persona around the Web

Slide 25

Slide 25 text

Persona around the Web

Slide 26

Slide 26 text

Persona around the Web

Slide 27

Slide 27 text

Persona around the Web

Slide 28

Slide 28 text

Persona around the Web

Slide 29

Slide 29 text

Persona around the Web

Slide 30

Slide 30 text

Persona in your app 1. JavaScript Library 2. Login / logout buttons 3. Configure Persona 4. Verify Assertions

Slide 31

Slide 31 text

Persona API - 1. JavaScript Library https://login.persona.org/include.js

Slide 32

Slide 32 text

Persona API - 2. Buttons! Sign in Log out

Slide 33

Slide 33 text

Persona API - 3. Configure client.js

Slide 34

Slide 34 text

Persona API - 4. Verify app.js (server-side)

Slide 35

Slide 35 text

Persona API - 4. Verify routes.js (server-side)

Slide 36

Slide 36 text

Persona API in your favorite language verifier response

Slide 37

Slide 37 text

Persona API in your favorite language

Slide 38

Slide 38 text

Persona with plugins 1. JavaScript Library 2. Login / logout buttons 3. Configure Persona 4. Verify Assertions

Slide 39

Slide 39 text

Meteor + Persona Demo

Slide 40

Slide 40 text

Persona for developers

Slide 41

Slide 41 text

Existing plugins and libraries JavaScript Python Ruby PHP Java Clojure ...

Slide 42

Slide 42 text

Persona for Identity Providers

Slide 43

Slide 43 text

Persona - for your domain [email protected] yourdomain.com Identity Provider

Slide 44

Slide 44 text

Persona - IdP in your language Reference implementation in Node.js

Slide 45

Slide 45 text

Persona - BrowserID Actors Users - A person that wants to sign into a website Relying Parties - Sites that use Persona for sign-in Identity Providers - Domains that can issue certiﬁcates

Slide 46

Slide 46 text

Persona - Step 1: Certificate Provisioning /.well-known/browserid Identity Provider Provisioning URL using email and public key User Certificate Browser

Slide 47

Slide 47 text

Persona - Step 2: Identity Assertion Identity Assertion domain of the RP + expiration Browser

Slide 48

Slide 48 text

Persona - Step 3: Verification Identity Assertion User Certificate Identity Provider /.well-known/browserid

Slide 49

Slide 49 text

Persona - Fallback IdP Fallback Identity Provider /.well-known/browserid Identity Provider Browser or Relying Party requests

Slide 50

Slide 50 text

browserid-certifier generate a shared public key for the IdP serve /.well-known/browserid has the public key, authentication & provisioning urls Persona - Setting up an IdP implement provisioning page & authentication page

Slide 51

Slide 51 text

Developer Documentation https://developer.mozilla.org/persona Need to introduce Persona to others? http://mozilla.org/persona User? Developer? Submit your user story: https://github.com/mozilla/browserid-roadmap Need help beyond the docs? #identity on irc.mozilla.org Persona for everyone

Slide 52

Slide 52 text

developer.mozilla.org/persona Thanks!