Search DaniWeb - oauth2

Re: API OAuth for Desktop 10 Years Ago by Ketsuekiame OAuth is pretty bad for native apps, whilst maintaining the trust of your users. There's ways around it of course, but none of them lead for a good user experience. Unfortunately nothing can be done about that :( Re: REST API secure login 10 Years Ago by phorce OAuth can seem like a daunting task to implement, although, can be worth-while. First of all: **Choose the return type** What I mean by this is: How do you want the data to be processed? Should you use XML or JSON? It's entirely up to you, you might specifiy what the user wants and therefore chooses. Second of all: **Security** If people are … Oauth for twitter using C# 11 Years Ago by rrr12345 Hello guyz, I am trying call oauth/request_token in order to oauth_token and oauth_token_secret. First here's the code string url = "https://api.twitter.com/oauth/request_token"; SortedDictionary<string,string> sd = new SortedDictionary<string,string>(); sd.Add("… OAuth 2.0 Implicit Flow with the DaniWeb API 10 Years Ago by Dani # The nature of this tutorial ... This tutorial is designed to walk you through DaniWeb's implicit (clientside) OAuth flow. This is not designed to be an introductory tutorial to OAuth, and we will expect that you are already familiar with the nature of OAuth and/or have read our tutorial on [Getting started with OAuth 2.0 Explicit Flow](http://… OAuth help 10 Years Ago by IIM I tried using Daniweb OAuth for android application but didn't able to understand as it requires redirect url but in my case it is a standalone desktop application interacting with dani webapi's. Do i have to create a webapp and then my application instead of contacting daniweb,contact my website and authenicate from there and then utilize daniweb … Getting started with OAuth 2.0 Explicit Flow 10 Years Ago by Dani # What is OAuth and why do I want to use it? If you want to write an application that caters to existing members of a service, and you want your application to be able to access private areas of your end-users' profiles, or modify their accounts on their behalf, then you need OAuth. OAuth allows your application to automatically detect which … Re: Getting started with OAuth 2.0 Explicit Flow 10 Years Ago by Dani We also have a [tutorial about clientside (implicit) flow](http://www.daniweb.com/web-development/javascript-dhtml-ajax/tutorials/469810/oauth-2.0-implicit-flow-with-the-daniweb-api) which I encourage javascript people to check out as a follow up to this tutorial :) Re: Getting started with OAuth 2.0 Explicit Flow 10 Years Ago by Dani When you exchange a code for an access token, the resulting JSON gives you both an access token as well as a refresh token. Store the access token in the current session; it will work for up to an hour. Store the refresh token in your database; it can be perpetually exchanged for a new access token unless the end-user has deauthorized your app. … Re: Getting started with OAuth 2.0 Explicit Flow 10 Years Ago by Dani It should also be noted that the demo PHP outlined within this tutorial is the brute force method ... We simply bypass any methods of caching and always redirect the end-user to www.daniweb.com/api/oauth each time they load up the demo page, where they are issued a new code to be exchanged. We don't take into consideration the use of access tokens … Re: Google OAuth embedded webview 11 Months Ago by AndreRet Hi Dani, sorry only saw the mail now... I did some research as I never encountered the same issue and I hope the below will help - The message you received indicates that there is an embedded webview being used in requests to Google's OAuth 2.0 authorization endpoint. This message is usually displayed when using certain libraries or frameworks … Google OAuth embedded webview 1 Year Ago by Dani I received this email: > > Hello Google Developer, > > We're writing to let you know that we detected the use of an embedded webview in requests to Google's OAuth 2.0 authorization endpoint in the past 120 days associated with one or more of your OAuth client IDs listed in this email. > > Any affected authorization … Proper way to do JavaScript-based OAuth 11 Years Ago by Dani As many of you know, DaniWeb now has an API. It (optionally) uses OAuth 2.0 and it supports both server-side and client-side implementations. The server-side method I have down pat. However, I had to hack together the clientside implementation, and although it works, I'm not sure it's done "correctly". I wasn't able to find any … Re: Complete oAuth Sample 13 Years Ago by JBLDW I am not an OAuth user, and cannot give you any advice on using it. However, did you find these resources? [url]http://hueniverse.com/oauth/[/url] [url]http://hueniverse.com/oauth/guide/[/url] Looking at what little documentation I could find it looks as though you need to be experienced enough in using the things that OAuth depends on in order… Re: Proper way to do JavaScript-based OAuth 11 Years Ago by Dani This makes much more sense: <script type="text/javascript"> <!-- var client_id = <?= $client_id ?>; var access_token; if (window.opener != null && !window.opener.closed) { // Redirect the hash (which includes the access token) from the OAuth process… Re: Google OAuth embedded webview 11 Months Ago by Dani > To turn off the use of the embedded webview and resolve this issue, you'll need to modify the way you handle the OAuth 2.0 authorization flow in your application. Instead of using an embedded webview, you should switch to using a system browser for the authorization process. Here's a general guide on how to achieve that: That's the thing. I… Re: Daniweb OAuth support 10 Years Ago by ~s.o.s~ Yup that was a really bad mistake, good job spotting that! :) Anyways, I have finally got the OAuth API functions working in a console script. There are a few problems with some API calls which I have tried to mention inline in comments. The code is in Python and assumes you have the "requests" module installed. This code can be easily … Re: Google OAuth embedded webview 1 Year Ago by Dani Oh, also, I went ahead and [tested for compatibility](https://developers.googleblog.com/2021/06/upcoming-security-changes-to-googles-oauth-2.0-authorization-endpoint.html) with ?disallow_webview=true and it still worked. Should I just ignore the email? Re: Complete oAuth Sample 13 Years Ago by JBLDW I have done a quick search and came up with the main OAuth page: [url]http://oauth.net/[/url] ...and a Google page which should help you with some examples: [url]http://code.google.com/apis/accounts/docs/OAuth.html[/url] ...hope these help with whatever you are working on ...and no worries about your bad English - it's no worse than … Re: Daniweb OAuth support 10 Years Ago by ~s.o.s~ **EDIT:** Missed your latest post so the below is for #4 post in this thread. > The method outlined on that page would work with our existing serverside implementation. No, there is a very important distinction which is why the "are you expecting desktop app writers to spawn a local web server" part in my original post. In the … Re: Daniweb OAuth support 10 Years Ago by ~s.o.s~ Sure, I'll try testing it on my side. I'm assuming you have made some changes to how standlone apps deal with the Daniweb oauth infrastructure. I tried sending a request: http://www.daniweb.com/api/oauth?response_type=code&client_id=40&redirect_uri=urn:ietf:wg:oauth:2.0:oob which should ideally bring me to a page which asks for user … Complete oAuth Sample 13 Years Ago by eantz Hi everyone, I have a project that need an API but still in progress. But, I have a problem with this API authentication. The authentication method I want to use is oAuth. But, unfortunately I don't have any acknowledgement about authentication. I've read many tutorial but I still don't know how to start because most of them explain about … Re: Complete oAuth Sample 13 Years Ago by eantz Hi JDLBW, Thanks for your reply.. I have read the documentation of official oAuth website. That's all about the concept how oAuth work. And google api documentation explain almost the same thing with client side implementation. But, how about server side implementation? I need to know about how server manage the consumer request and send … Re: Complete oAuth Sample 13 Years Ago by eantz Yes, that's all the first article I read when I want to use oAuth. I read it twice or third to understand about oAuth. But, I really need real world example how use it since I'm new to this thing.. Re: Complete oAuth Sample 13 Years Ago by JBLDW Does oAuth have a forum or something similar? - If it does, that would probably be the best place to ask for example material. Unfortunately oAuth is not something I am familiar with, so I cannot help you any further with this. Re: Complete oAuth Sample 13 Years Ago by eantz Unfortunately both [URL="http://oauth.net"]oauth[/URL] official website and [URL="http://hueniverse.com"]hueniverse[/URL] don't have any forum or mailing list. One thing that I can get is their google code repository example which is not detailed. Don't feel guilty JBDLW.. I really appreciate your effort to help me.. It means … Re: Complete oAuth Sample 13 Years Ago by Mouche I just found a very helpful tutorial for the server-side OAuth. [url]http://toys.lerdorf.com/archives/55-Writing-an-OAuth-Provider-Service.html[/url] Daniweb OAuth support 10 Years Ago by ~s.o.s~ Hi Dani, AFAIK OAuth 2.0 supports 3 flavours: Server side apps, client side apps and installed apps. Does Daniweb Oauth allow OOB in the redirect_uri which is part of the support for installed/standalone apps? If no, are you expecting desktop app writers to spawn a local web server and use the serverside flow? Re: Daniweb OAuth support 10 Years Ago by ~s.o.s~ I'm personally not aware of what kind of code changes are to be required to the server to support OAuth 2.0 standalone apps. But, I can definitely point you to the document which outlines how clients should interact with providers who have desktop/standalone support. [Using OAuth 2.0 for Installed Applications](https://developers.google.com/… jQuery OAuth API stopped working 10 Years Ago by diafol prompted by the discussion on antoher thread... This has stopped working (jQuery/OAuth): http://dw.diafol.org/en/dw-box/ Although this still works (php/no OAuth): http://dw.diafol.org/en/dw-badge/ When I start the ball rolling with a click on the jQuery example, I get the authentication box and nothing else. Subsequent clicks bring up the box … Re: jQuery OAuth API stopped working 10 Years Ago by Dani There was a bug on my end where I changed something and forgot to account for people still doing it the old way (as I had for the serverside implementation). To comply with standards, the URI http://www.daniweb.com/api/oauth/dialog was changed to http://www.daniweb.com/api/oauth?response_type=token However, now that I've fixed the bug I …