On May 21, 10:09 am, Roger Nesbitt <
ro...@youdo.co.nz> wrote:
> How about storing the access token in a session cookie, and getting the user to re-authenticate with Powershop every session?
>
> Roger
>
> On 21 May 2010, at 10:06, ziglionz wrote:
>
>
>
>
>
> > Sure, a login is necessary. Initially I thought I could rely on
> > Powershop but that's just to authorize the application.
> > Now I'm looking at OAuth/OpenID in Google Apps and at Facebook Connect
> > to that I don't have to implement my own mechanism.
> > I could just use just basic auth over SSL but it'd be one more set of
> > credentials for the user to remember
>
> > On May 20, 4:17 pm, Tim Wright <
drtimwri...@gmail.com> wrote:
> >> A different slant on this is:
>
> >> How will your users feel giving access to their private data (ie:
> >> powershop data) to an application (your application) that they don't
> >> have to log in to. Will that provide them with confidence in your
> >> security?
>
> >> Tim
>
> > --
> > You received this message because you are subscribed to the Google Groups "Powershop Developers" group.
> > To post to this group, send email to
powershop-...@googlegroups.com.
> > To unsubscribe from this group, send email to
powershop-develo...@googlegroups.com.