Your SlideShare is downloading. ×
0
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Web authentication & authorization
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

Web authentication & authorization

256

Published on

Web authentication & authorization Presentation

Web authentication & authorization Presentation

0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
256
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
1
Comments
0
Likes
1
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. OAuthAutentificare Client-SideAndrei VerdeșBogdan Lefter
  • 2. OAuth (Open Authentification) este un standard web de autentificare Permite partajarea resurselor private intre diferite aplicatii web Prerogativele utilizatorului nu sunt impărtite, aplicatiile web partajând doar tokenuri de securitate. Fiecare token garantează acces catre:  O aplicatie web specifica  Reusrse specifice  Pentru o perioada definita de timp
  • 3. OAuth vs OpenID Amandoua apartin domniului general de securitate, autentificare si autorizare Amandoua sunt standarde web open Amandoua se concentreaza pe decentralizare Amandoua implica redirectari de browser de la websiteul pe care incercati sa il folositi
  • 4. OAuth vs OpenID OpenID ofera un singur id de login pentru mai multe siteuri OAuth autorizeaza o aplicatie web sa acceseze date private de pe alte website-uri Cu OpenID nu exista ideea ca doua aplicatii web sa partajeze date Cu OAuth anumita infomatie detinuta pe un website poate fi partajata cu alt website
  • 5. OAuth @ Twitter.com Pe data de 30 August 2010 Twitter.com a inchis definitiv Basic Auth Daca detii un cont de twitter poti deveni dezvoltator : 1. Intra pe http://dev.twitter.com 2. Click “Your apps” 3. Click “Create new application” 4. Et voila!
  • 6. OAuth @ Twitter.com Parametri inregistrati  API key  Consumer key  Consume secret  Request token URL: https://api.twitter.com/oauth/request_token  Access token URL: https://api.twitter.com/oauth/access_token  Authorize URL: https://api.twitter.com/oauth/authorize
  • 7. OAuth @ Twitter.com Pentru facilitarea autentificarii twitter vine cu ceva nou. Si anume utilitarul @anywhere care genereaza o biblioteca javascript in functie de cheia consumatorului(obtinuta in urma crearii unei aplicatii twitter ) si apeland functiile din aceasta biblioteca faciliteaza accesul la resurse
  • 8. OAuth @ Twitter flow

×