[oauth] oauth.net Java library's enhancement for OAuth 2.0 provider is out
Hi, as discussed at the thread below; http://groups.google.com/group/oauth/browse_thread/thread/6bb277966becf84c?pli=1, I have been working on oauth.net Java library's enhancement for OAuth 2.0 provider. And finally I put some output on github; https://github.com/bucchi/OAuth2.0ProviderForJava. I have done some unit tests and functional tests for core module and example of web server profile. Right now, I am working on refactoring and cleaning up the source codes. Once it is done, I will work on further enhancement to support other profiles also. There could be my misunderstanding for the spec. I am really appreciate your feedback. Thanks, yutaka -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
[oauth] Re: Java library enhancement for OAuth 2.0 provider
Hi John, Thank you for your comment. Exactly there are some conflicting terminology. And it is pretty much annoying to implement that actually. So maybe you are right. I think that I better create a new packge for OAuth 2.0. (Actually I have never noticed there is already OAuthClient.java because I have never used consumer side library.) >From my understanding, as far as Web Server Flow, overlap is only redirecting flow after authentication from Authorization server. So it does not have to be a combined API. But I want to keep API same as before as much as possible so that it can be easy to implement OAuth2.0 provider for people who have implemented OAuth1.0 provider before. That is why I thought it was better to modify existing classes especially if they are in "common" project. Why do you think that it might be best to create an entirely new API for OAuth 2? Are there any other reason than little overlap in those versions? -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
[oauth] Java library enhancement for OAuth 2.0 provider
Hi, Using OAuth Java library that was contributed by John Kristian, Praveen Alavilli and Dirk Balfanz, I developed OAuth Provider Extension module for Zimbra and posted that to Zimbra Community. (http://www.zimbra.com/forums/developers/35150-oauth-provider- extension-zcs6-0-a.html) I really appreciate you guy's effort for OAuth Java library. Thank you all! But the extension is only for OAuth 1.0a so far, so I want to make that for OAuth 2.0. As first step for that, I start working on OAuth Java library's enhancement for OAuth 2.0 provider. I think that outline of the enhancement can be like below. Am I on the right track for the enhancement?? Or is threre more straight way to the goal?? Let me know your idea. (outline) 1, I will modify OAuth.java and add OAuth 2.0 parameter in it. 2, I will create new class OAuthClient.java which is actually the counterpart of OAuthConsumer.java in OAuth 1.0. 3, I will modify OAuthAccessor.java and make it handle OAuthClient instance and others such as authorization code, access token, and refresh token. Of course, I maybe have to create SampleOAuthProvider.java and SimpleOAuthValidator.java for OAuth 2.0. Thank you, yutaka -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
