Google Groups Home
Help | Sign in
OAuth
Home
Pages
Files
About this group
Apply for group membership
Authentication on Java Implementation
Options
There are currently too many topics in this group that display first. To make this topic appear first, remove this option from another topic.
There was an error processing your request. Please try again.
flag
   3 messages - Collapse all
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
chokuzin  
View profile
  More options May 15, 7:53 am
From: chokuzin <naog...@fsi.co.jp>
Date: Thu, 15 May 2008 04:53:49 -0700 (PDT)
Local: Thurs, May 15 2008 7:53 am
Subject: Authentication on Java Implementation
Reply to author | Forward | Print | Individual message | Show original | Report this message | Find messages by this author
Hello,

I have looked the code of Java example (Revision 557).
Dose the example implements that the Service Provider asks the User if
the Consumer can access the Protected Resources after verifying the
User's identity?
OAuth specification says "The User MUST grant or deny permission ..."
on 6.2.2.

Best,
Naoto


    Reply to author    Forward  
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
John Kristian  
View profile
  More options May 16, 11:55 am
From: John Kristian <jkrist...@netflix.com>
Date: Fri, 16 May 2008 08:55:36 -0700 (PDT)
Local: Fri, May 16 2008 11:55 am
Subject: Re: Authentication on Java Implementation
Reply to author | Forward | Print | Individual message | Show original | Report this message | Find messages by this author
AuthorizationServlet and authorize.jsp ask the user to identify
herself.  At this point, a real service provider would authenticate
the user and ask for permission.

http://oauth.googlecode.com/svn/code/java/example/oauth-provider/src/...
http://oauth.googlecode.com/svn/code/java/example/oauth-provider/web/...

On May 15, 4:53 am, chokuzin <naog...@fsi.co.jp> wrote:


    Reply to author    Forward  
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
chokuzin  
View profile
  More options May 17, 6:53 am
From: chokuzin <naog...@fsi.co.jp>
Date: Sat, 17 May 2008 03:53:16 -0700 (PDT)
Local: Sat, May 17 2008 6:53 am
Subject: Re: Authentication on Java Implementation
Reply to author | Forward | Print | Individual message | Show original | Report this message | Find messages by this author
Hi John,

I got the Java implementation, run the application and read the spec
again. I found you are right.
OAuth specification doesn't say that the Service Provider should have
an authentication page and a permission page.

Thanks.


    Reply to author    Forward  
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
End of messages
« Back to Discussions « Newer topic     Older topic »

Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2008 Google