DiSo, OAuth, and More
By patrick, posted August 16, 2008 at 9:55 am | 1 Comment »
Will Norris Speaking (http://will.norris.name)
Initaillt Started with the OpenID plugin. They had numerous technologies to begin with. It all came out of the DISO project.
All these service have an API, typically each site has its own password. The idea here is a Protocol for a user to interact with these services without thinking about it.
the Valet Key to the web. It allows
OpenAuth != OpenID
OpenID identifies people, OpenAuth identifies applications. roughly
The love triange
End user to Service Provider to Consumer Application to… It allows an Application like iphoto to talk to Flickr or Twitterfic to talk to twitter.
Used most often to import contacts. You pretty much have to give your full access to just do minor things. So OAuth is being made to allow access, but not full access. Currently its not revokable. OAuth is an attempt to allow for that also.
Used the WordPress iphone Application that hes working on to give examples on how it works.
Plans to Fix:
Be Revoked:
Automattically
Manually
A lot of Applications, Service use it, and is very well vetted since the spec was only finalized December 2007
Basic overview is that you give the application your URL, you log into YOUR site and your site asks what levels do you want to allow the application to use and then click authorize. the Application savs the authorization token and you site saves it. Then on your site you can edit or control that token all you want.
Quick Sessions, went to a quick set of questions and answers.
[...] DiSoやOAuthなど (Will Norris) プレゼンメモ、スライド [...]