I don't know anything about the PHP implementation, but am involved in the Java implementation. OAuth is used in two places:
- the gadget rendering server has an "OAuth proxy" built in that allows gadgets to become OAuth consumers (see https://sites.google.com/site/oauthgoog/oauth-proxy or http://blog.oauth.net/2008/06/04/oauth-meet-gadgets-gadgets-meet-oauth/ as starting points). - the RESTful API server uses OAuth as one of a number of authentication mechanisms for incoming requests to determine the request's authentication context, turning the RESTful API server into an OAuth service provider. Unlike the OAuth proxy, this feature is currently being implemented and still in flux. Dirk. On Sat, Jul 19, 2008 at 6:44 AM, ajay singh <[EMAIL PROTECTED]> wrote: > Thanks , nice tutorial > > But can you explain me how shindig use it. > what i have to do after creating keys in php/certs > > > > Gonzalo Aune <[EMAIL PROTECTED]> wrote: Basically, OAuth is used for > authenticate a user to a domain (like your user > in Gmail), but without the need to pass your secret information to the page > which is asking for that information (like Linkedin does with your Gmail > account). It uses authentication tokens to get the information. > > Extract from OAuth webpage: > > OAuth allows you to share your private resources (photos, videos, contact > list, bank accounts) stored on one site with another site without having to > hand out your username and password. There are many reasons why one should > not share their private credentials. Giving your email account password to a > social network site so they can look up your friends is the same thing as > going to dinner and giving your ATM card and PIN code to the waiter when > it's time to pay. Any restaurant asking for your PIN code will go out of > business, but when it comes to the web, users put themselves at risk sharing > the same private information. OAuth to the rescue. > > ..... > > OAuth addresses that by allowing users to hand out tokens instead. Each > token grants access to a specific site (a video editing site) for specific > resources (just videos from last weekend) and for a defined duration (the > next 2 hours). > > More detailed in: http://oauth.net/documentation/getting-started - End-User > Benefits > > G.- > > On Fri, Jul 18, 2008 at 7:38 AM, ajay singh > wrote: > >> Hi >> >> Can anyone explain me in brief what is the use Oauth library in shindig. >> What it does and how it does? >> >> Thanks >> Ajay kumar Singh >> >> >> > > > >
