Search

Oauth Vs Password Antipattern

Loading...

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

0 comments

Post a comment

    Post a comment
    Embed Video
    Edit your comment Cancel

    Notes on slide 1

    OAuth: what is it? And how can it help us combat the password anti-pattern?

    3 Favorites & 1 Group

    Oauth Vs Password Antipattern - Presentation Transcript

    1. Barcamp Brighton 3 OAuth versus the Password Anti-Pattern Bruce Boughton 6-7 September 2008 http://lab.madgex.com/oauth-net/ [email_address] http://siliconbea.ch/
    2. The Password Anti-Pattern
      • Problem Solved
        • Google Contacts Data API
        • Windows Live Contacts API
        • Yahoo! Address Book API
        • AuthSub
        • WL ID Delegated Auth
        • BBAuth
      • And this is just for authentication!
    4. OAuth
        • An open protocol to allow secure API authentication in a simple and standard method from desktop and web applications.
    5. http://lab.madgex.com/oauth-net/googlecontacts/
    6. http://whereami.lab.madgex.com/
    7. consumers service providers users
      • Asserting Identity and Authority
        • Requests signed using consumer & token secrets
        • Request token : consumer identified, requesting authorization
        • Access token : consumer authorized by user to act on their behalf, may now fetch protected resources
      • Extensible and Flexible
        • OAuth Core 1.0 provides base
        • Supports at least web, desktop consumers
        • Extensions add functionality
    10. OAuth.net Open source .NET library http://lab.madgex.com/oauth-net/ [email_address]
      • Bringing OAuth to .NET developers
        • Build consumers and service providers for .NET 2.0 and newer
        • Hides complexity of protocol from developer
        • Very permissive MIT license
        • Developed as part of ongoing innovation work
    12. Configuring the Fire Eagle service
    13. Requesting the user’s location
    14. Handling authorization (when required)
    15. Using the protected resource
    16. http://oauthproviderdemo.madgex.com/
      • Want to know more?
        • http://lab.madgex.com/oauth-net/
        • [email_address]
        • http://siliconbea.ch/
        • [email_address]

    + bruceboughtonbruceboughton, 2 years ago

    custom

    1461 views, 3 favs, 1 embeds more stats

    In the world of the Web, it's common for sites to p more

    More info about this document

    © All Rights Reserved

    Go to text version

    • Total Views 1461
      • 1460 on SlideShare
      • 1 from embeds
    • Comments 0
    • Favorites 3
    • Downloads 52
    Most viewed embeds
    • 1 views on http://localhost

    more

    All embeds
    • 1 views on http://localhost

    less

    Flagged as inappropriate Flag as inappropriate
    Flag as inappropriate

    Select your reason for flagging this presentation as inappropriate. If needed, use the feedback form to let us know more details.

    Cancel
    File a copyright complaint
    Having problems? Go to our helpdesk?

    Categories

    Tags

    Groups / Events

    -->
    Search
    RSS Feed
    What's new?

    © 2009 SlideShare Inc. All Rights Reserved