I've used omniauth in the past with Lift, and I'm working with a client looking into adding some OAuth features to their Lift app. We've (re)evaluated omniauth and discovered
scribejava in the process.
It looks like scribejava is a pretty solid option today. Omniauth doesn't have a lot of maintenance traction right now, and there is some overlap with scribejava. For instance, scribejava also features provider-specific details for popular services like Twitter, Facebook, etc. Scribejava also has significantly fewer dependencies (omniauth uses legacy Dispatch 0.8.x for http which pulls in quite a tree of jars) as it depends on native JVM stuff for http (can also plug in other http stuff as needed). Overall, scribejava just strikes us as a well-designed library for its goals.
It seems at this point the primary value that omniauth has over scribejava is it already plumbs out some of the Lift session stuff for handing off tokens.
What are other folks doing for OAuth these days? What would the interest level be in creating Lift module which takes what omniauth provides and offloads the rest of it to scribejava? Would a re-write and major version bump of omniauth be the best route (note that I have push rights to the repo, so I can certainly work with the right ppl to make it happen)?
Thanks,
Joe