#542 HIGH First D: Better dialog for SSL / https sites
Zarro Boogs per Child
bugtracker at laptop.org
Tue Oct 2 14:38:10 EDT 2007
#542: Better dialog for SSL / https sites
-------------------------------+--------------------------------------------
Reporter: ywwg | Owner: erikos
Type: defect | Status: new
Priority: high | Milestone: First Deployment, V1.0
Component: interface-design | Version:
Resolution: | Keywords:
Verified: 0 |
-------------------------------+--------------------------------------------
Changes (by Eben):
* owner: Eben => erikos
Comment:
So, using the alert style spec'd in #2822, I think we'll want to make the
text more concise. Glancing at the API linked above, here's my tentative
suggestions:
Alert Title (for all):
- Untrusted Website
Alert Descriptions:
- The certificate for <url> has expired.
- The supplied certificate for <url> does not include <url>.
- The issuer of the certificate for <url> isn't known.
- The certificate for <url> may be revoked.
Buttons:
- Continue: Trust the certificate temporarily (for this session) and
continue to the website
- Inspect: View the certificate in detail (may require non-
modal/fullscreen alert support?)
- Cancel: Don't trust the certificate; remain at the current page.
Should we offer a "Always trust" option in any manner? The spec for the
non-modal alerts doesn't support adding other controls (such as a
checkbox), but that might not be a problem. It doesn't seem unreasonable
to force one to inspect the certificate to verify it before always
trusting it, and the design for the modal fullscreen alert should be more
like a palette, supporting any kind of controls inside it. In any case, I
think the "always trust" option is an enhancement for the future, even
though we're technically obliged to show the details of the certificate...
--
Ticket URL: <https://dev.laptop.org/ticket/542#comment:20>
One Laptop Per Child <https://dev.laptop.org>
OLPC bug tracking system
More information about the Bugs
mailing list