Re: [oauth] Getting the user name
OpenID Connect (http://openidconnect.com/) is an alternative version of OpenID build on OAuth. It considers this use case as well and returns a user identifier which can be used to get username etc. in a standardized manner via OAuth. Regards, Lukas 2010/5/20 Leah Culver leah.cul...@gmail.com Many APIs have an endpoint solely for getting information about the authenticated user. I think Twitter's is account/verify_credentials... Leah On May 16, 2010, at 5:36 PM, Richer, Justin P. jric...@mitre.org wrote: Nothing exists for this specifically in OAuth, partially because not all APIs have a notion of a username. However, I think that it makes sense to have a notion of per-instance metadata attached to a token. For example, if a user has two instances of a thick client, both of those will have tokens in the server end, but since they'll both have the same client ID there's no way to tell them apart. Username could be one of these kinds of per-instance meta ields. I floated this idea on the list a while back and never got traction on it. -- justin -- http://lukasrosenstock.net/ -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
RE: [oauth] Getting the user name
Nothing exists for this specifically in OAuth, partially because not all APIs have a notion of a username. However, I think that it makes sense to have a notion of per-instance metadata attached to a token. For example, if a user has two instances of a thick client, both of those will have tokens in the server end, but since they'll both have the same client ID there's no way to tell them apart. Username could be one of these kinds of per-instance meta ields. I floated this idea on the list a while back and never got traction on it. -- justin From: oauth@googlegroups.com [oa...@googlegroups.com] On Behalf Of hank williams [hank...@gmail.com] Sent: Tuesday, May 11, 2010 1:45 PM To: oauth@googlegroups.com Subject: [oauth] Getting the user name I am an Oauth Noob, and so I have a basic question. My company is intending to support Twitter, Google apps, and Yahoo apps access via Oauth. I know that part of the purpose of Oauth is to prevent the application developer from seeing the account name/password. But I am wondering if it is indeed the goal to keep the account name from the application developer. We would like to support a users ability to access multiple accounts on the same service. For example through our service the user could access two google accounts because they have two separate gmail accounts. For a proper user interface we need to be able to request, from within a given API, a call of the type what is the username for this account. This will allow us to provide a UI that has choices for which account the user wants to be able to use. I have just been looking at the twitter API and I do not see a what is the username for this account call, and so I thought I would ask here if I am somehow barking up the wrong philosophical tree, and if not if anyone knows how to make such calls for twitter, yahoo and google. Thanks, Hank. -- blog: whydoeseverythingsuck.comhttp://whydoeseverythingsuck.com -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en. -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
Re: [oauth] Getting the user name
Many APIs have an endpoint solely for getting information about the authenticated user. I think Twitter's is account/verify_credentials... Leah On May 16, 2010, at 5:36 PM, Richer, Justin P. jric...@mitre.org wrote: Nothing exists for this specifically in OAuth, partially because not all APIs have a notion of a username. However, I think that it makes sense to have a notion of per-instance metadata attached to a token. For example, if a user has two instances of a thick client, both of those will have tokens in the server end, but since they'll both have the same client ID there's no way to tell them apart. Username could be one of these kinds of per-instance meta ields. I floated this idea on the list a while back and never got traction on it. -- justin From: oauth@googlegroups.com [oa...@googlegroups.com] On Behalf Of hank williams [hank...@gmail.com] Sent: Tuesday, May 11, 2010 1:45 PM To: oauth@googlegroups.com Subject: [oauth] Getting the user name I am an Oauth Noob, and so I have a basic question. My company is intending to support Twitter, Google apps, and Yahoo apps access via Oauth. I know that part of the purpose of Oauth is to prevent the application developer from seeing the account name/password. But I am wondering if it is indeed the goal to keep the account name from the application developer. We would like to support a users ability to access multiple accounts on the same service. For example through our service the user could access two google accounts because they have two separate gmail accounts. For a proper user interface we need to be able to request, from within a given API, a call of the type what is the username for this account. This will allow us to provide a UI that has choices for which account the user wants to be able to use. I have just been looking at the twitter API and I do not see a what is the username for this account call, and so I thought I would ask here if I am somehow barking up the wrong philosophical tree, and if not if anyone knows how to make such calls for twitter, yahoo and google. Thanks, Hank. -- blog: whydoeseverythingsuck.comhttp://whydoeseverythingsuck.com -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/oauth?hl=en . -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/oauth?hl=en . -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
[oauth] Getting the user name
I am an Oauth Noob, and so I have a basic question. My company is intending to support Twitter, Google apps, and Yahoo apps access via Oauth. I know that part of the purpose of Oauth is to prevent the application developer from seeing the account name/password. But I am wondering if it is indeed the goal to keep the account name from the application developer. We would like to support a users ability to access multiple accounts on the same service. For example through our service the user could access two google accounts because they have two separate gmail accounts. For a proper user interface we need to be able to request, from within a given API, a call of the type what is the username for this account. This will allow us to provide a UI that has choices for which account the user wants to be able to use. I have just been looking at the twitter API and I do not see a what is the username for this account call, and so I thought I would ask here if I am somehow barking up the wrong philosophical tree, and if not if anyone knows how to make such calls for twitter, yahoo and google. Thanks, Hank. -- blog: whydoeseverythingsuck.com -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
Re: [oauth] Getting the user name
Hi! Twitter returns the screenname and user id with almost any API call, and also along with the Access Token. For other services you have to check which API call can give you an account name. There is no standardized way in OAuth to do this. Regards, Lukas PS: Anyone thinks this should be standardized?! 2010/5/11 hank williams hank...@gmail.com I am an Oauth Noob, and so I have a basic question. My company is intending to support Twitter, Google apps, and Yahoo apps access via Oauth. I know that part of the purpose of Oauth is to prevent the application developer from seeing the account name/password. But I am wondering if it is indeed the goal to keep the account name from the application developer. We would like to support a users ability to access multiple accounts on the same service. For example through our service the user could access two google accounts because they have two separate gmail accounts. For a proper user interface we need to be able to request, from within a given API, a call of the type what is the username for this account. This will allow us to provide a UI that has choices for which account the user wants to be able to use. I have just been looking at the twitter API and I do not see a what is the username for this account call, and so I thought I would ask here if I am somehow barking up the wrong philosophical tree, and if not if anyone knows how to make such calls for twitter, yahoo and google. Thanks, Hank. -- blog: whydoeseverythingsuck.com -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com oauth%2bunsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en. -- http://lukasrosenstock.net/ -- You received this message because you are subscribed to the Google Groups OAuth group. To post to this group, send email to oa...@googlegroups.com. To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.