Webmaker Services In a Box

Configuring and running services for Webmaker is a real pain in the ass. (Webmaker services = Webmaker API, Webmaker ID, and Webmaker LoginAPI) There's database and caching services to install and configure, npm dependencies to install, native NodeJS bindings to compile (sorry, Windows), and database scripts/migrations to run. This makes…

One Time Passwords (Part Two)

In my previous post, I wrote about the new login system we're working on for Webmaker. In short, the new system facilitates the authentication of a user by generating a one time use password and sending it to the user's email account. The user can then click a link in…

One Time Passwords

Webmaker users currently sign in to their accounts using Persona, Mozilla's privacy respecting authentication system. It's fairly simple, and has worked really well since our rewrite this past march. You can read the details of the implementation in the blog post I've just linked. Today, we're experimenting with alternative methods…

Hacking on Appmaker

This past week, I traveled to Revelstoke, BC for an Appmaker workweek. Appmaker is an application designed to enable anyone to create mobile web apps without needing to learn about coding. By combining various widgets together and connecting their inputs and outputs to one-another using the visual interface, users can…

Solving Hard Problems is Hard: Third Party MakeAPI Publishing

A majority of my work on Webmaker has been dedicated to something we call the Make API. It is a service for storing meta data about things people create online and making that meta data publicly searchable. Ever since we first stood up the service back in June, it has…

API Key Authentication using Hawk

I've spent the better part of my last two weeks working on implementing a new form of authentication for the Make API. This post is going to detail what has changed, how it works, and how you can set up your local webmaker-dev environment to use it. It may also…