We still default to using the local verifer because it's simpler,
but using a remote verifier may be necessary for e.g. testing
purposes when running on localhost.
Connects to mozilla/fxa-local-dev#112
Setting the SYNCSERVER_IDENTITY_PROVIDER environment variable will
cause syncserver to restrict both BrowserID and OAuth credentials
to be issued from that server.
Fixes#91, by pulling in a new version of tokenserver's LocalVerifier class that properly supports the extra "idpClaims" property that we use for tracking FxA generation numbers.
Before this change, you have either have to accept the default config
for the tokenserver backend, or specify all config options and hence
duplicate info from earlier in the file. With this change you can
now just specify anything you want to change and we'll use the defaults
for the rest.
This is the nuclear option for when your reverse proxy setup doesn't
place nicely with our request-signing thing - it causes the app to
unilaterally clobber its WSGI environment with values from public_url.
- Commit 947470d771 rendered a comment inaccurate
in syncserver/__init__.py.
- Logging to stdout by default obscures test results; disable the stdout deluge
by changing the logging class in syncserver/tests.ini