[tbb-bugs] #30237 [Applications/Tor Browser]: Tor Browser: Improve TBB UI of hidden service client authorization

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri May 17 20:00:23 UTC 2019

#30237: Tor Browser: Improve TBB UI of hidden service client authorization
 Reporter:  asn                       |          Owner:  tbb-team
     Type:  defect                    |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:  TorBrowserTeam201905      |  Actual Points:
Parent ID:  #30000                    |         Points:
 Reviewer:                            |        Sponsor:  Sponsor27-must

Comment (by antonela):

 Replying to [comment:3 asn]:
 > Looks good. Not sure how we can do better than "Private Key" but perhaps
 we should. Perhaps we can write "Personal key" or "key" and then have more
 info in a "?" box?

 `Private Key` seems the most appropriate term for what users should input
 there. I like the idea of having a [?]. We should figure out which content
 we would like to have at the [?]. I think we should link to something like
 `support.torproject.org/onionservices/auth` where end-users will have
 information about what the key is, how they can get it.

 > The `misspelled errors` can be detected (by checking whether we could
 decrypt the descriptor with the key), but depending on how communication
 channel between TB<->Tor works, we might not learn the result on time to
 keep the auth dialog open. So we would have to respawn the auth dialog to
 throw the error. Does this make sense, and is it ok?

 Yes, exactly. Those two different kind of errors are defined by how the UI
 react to it. For System Errors we must to reload the auth dialog. Users
 will click Done and then the dialog box will reload with the error.

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/30237#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tbb-bugs mailing list