Re: [Taler] transaction history UX and fulfillment URL semantics

[Christian Grothoff]

On 01/24/2016 09:51 PM, Florian Dold wrote:
> And I should mention that with the second suggestion, we still DO have
> the /pay page, but it is not part of the contract wrapper anymore, the
> wallet does not need to persistently store it.

Agreed, if /fulfillment is *required* to auto-redirect to /pay if
needed, we only need the /fulfillment URI in the contract. In that case,
it should probably become part of the signed JSON, not just some
external thing (which is what I think you mean by "contract wrapper").

> Whenever the /fulfillment?UUID=X page detects that the session state is
> missing / wrong, it just asks the wallet to POST the coins to the
> merchant-specific correct URL.

Sure. Still, here I think the merchant should _always_ replay the full
contract, as we should not allow Web pages to interrogate the Wallet
about its contracts in any way.

signature.asc
Description: OpenPGP digital signature