|
|
OAuth
|
|
Bill Seitz is a Product Manager/CTO with a track-record of bringing a business perspective to building agile product-development teams for start-ups, and is seeking a senior role in an entrepreneurial organization building disruptive Internet-driven products.
|
|
(backlinks off)
|
(map off)
|
(search off)
|
|
last edited
by BillSeitz
on
Nov 8, 2008 2:02 am |
emerging "standard" for delegating access to protected resources without having to share a password.
Everyday new website offer services which tie together functionality from other sites. A photo lab printing your online photos, a social network using your address book to look for friends, and [APIs] to build your own desktop application version of a popular site. These are all great services - what is not so great about some of the implementations available today is their request for your username and password to the other site. When you agree to share your secret credentials, not only you expose your password to someone else (yes, that same password you also use for online banking), you also give them full access to do as they wish. They can do anything they wanted - even change your password and lock you out... Libraries are already available for many popular platforms such as PHP, Ruby On Rails, PyThon, DotNet, C, and PeRl. We expect most upcoming work to focus on implementations and the development of extensions to the protocol.
http://oauth.net/documentation/getting-started
lots of the same people as behind OpenID, but no real relation between the 2 standards
Bill Seitz, fluxent at gmail dot com, Weblog