Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
T
Tor Browser
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 1,526
    • Issues 1,526
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 0
    • Merge Requests 0
  • Operations
    • Operations
    • Incidents
  • Analytics
    • Analytics
    • Repository
    • Value Stream
  • Wiki
    • Wiki
  • Members
    • Members
  • Activity
  • Graph
  • Create a new issue
  • Commits
  • Issue Boards
Collapse sidebar

GitLab is used only for code review, issue tracking and project management. Canonical locations for source code are still https://gitweb.torproject.org/ https://git.torproject.org/ and git-rw.torproject.org.

  • The Tor Project
  • Applications
  • Tor Browser
  • Issues
  • #34362

Closed
Open
Opened Jun 02, 2020 by Matthew Finkel@sysrqbDeveloper

Improve Onion Service Authentication prompt

https://blog.torproject.org/comment/288030#comment-288030

pastly commented that the current phrasing implies Tor Browser will send the private key to the onion service (because the onion service "requested it").

pastly, subsequently, suggested something like "foo.onion requires you to authenticate. Please enter the private key for your identity with this onion service".

The message should imply that the private key is needed for authentication, but the key is only used locally to prove possession of it (via crypto magic), and the key is not actually sent to the onion service.

Related: legacy/trac#30237 (moved)

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: tpo/applications/tor-browser#34362