Most of those concerns are valid. Daniel Friesnen has managed to convince me that OAuth is absolutely horrible, and that we will probably have to make our own authentication framework.
*-- * *Tyler Romeo* Stevens Institute of Technology, Class of 2015 Major in Computer Science www.whizkidztech.com | tylerro...@gmail.com On Fri, Mar 22, 2013 at 11:59 AM, Yuri Astrakhan <yastrak...@wikimedia.org>wrote: > There was a discussion recently about OAuth, and I just saw this blog > post< > http://insanecoding.blogspot.com/2013/03/oauth-great-way-to-cripple-your-api.html > > > (posted > on slashdot< > http://tech.slashdot.org/story/13/03/22/1439235/a-truckload-of-oauth-issues-that-would-make-any-author-quit > >) > with some heavy criticisms. I am not an expert in OAuth and do not yet have > a pro/against position, this is more of an FYI for those interested. > > --yurik > _______________________________________________ > Wikitech-l mailing list > Wikitech-l@lists.wikimedia.org > https://lists.wikimedia.org/mailman/listinfo/wikitech-l _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
