Two-Legged OAuth and OAuth Headers
33 views
Skip to first unread message
Lance Weber
Sep 10, 2009, 2:36:47 PM9/10/09
to Tornado Web Server
Hey guys, Tornado looks great, we're going to take a shot at replacing
web.py with Tornado in our next sprint here at CrashCorp.
After looking at tornado.auth I have a couple of quick questions
regarding OAuth support, mostly because I'm not familiar enough with
the code yet to discern the answers.
1) Is there support for Two-Legged OAuth? It doesn't look like it, so
if not we can take a shot at implementing a generic two-legged OAuth
mixin and contribute it back.
2) Does the OAuth mixin pull OAuth parms from the http headers if
available?
web.py with Tornado in our next sprint here at CrashCorp.
After looking at tornado.auth I have a couple of quick questions
regarding OAuth support, mostly because I'm not familiar enough with
the code yet to discern the answers.
1) Is there support for Two-Legged OAuth? It doesn't look like it, so
if not we can take a shot at implementing a generic two-legged OAuth
mixin and contribute it back.
2) Does the OAuth mixin pull OAuth parms from the http headers if
available?
Bret Taylor
Sep 10, 2009, 2:44:27 PM9/10/09
to python-...@googlegroups.com
We would love a two-legged OAuth contribution. It is not currently supported.
Can you clarify (2)? auth just provided client auth implementations, not Provider implementations, so I am not sure header parsing is relevant (unless I am misunderstanding your question).
Bret
Can you clarify (2)? auth just provided client auth implementations, not Provider implementations, so I am not sure header parsing is relevant (unless I am misunderstanding your question).
Bret
Lance Weber
Sep 10, 2009, 2:50:05 PM9/10/09
to python-...@googlegroups.com
Actually, that answers the question perfectly - we need a Two-Legged Provider Mixin, so if we're going to write that we might as well whip up the Two-Legged Client Mixin while we're at it for testing.
--Lance
Reply all
Reply to author
Forward
0 new messages