Comments on: Web Service Authentication APIs http://dentedreality.com.au/2010/01/web-service-authentication-apis/ Beau Lebens throws down his opinion on all sorts of things he doesn't know too much about. Thu, 09 Feb 2012 01:49:18 +0000 hourly 1 http://wordpress.org/?v=3.4-alpha-19719 By: Hwallpapers http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-4117 Hwallpapers Wed, 12 Jan 2011 12:13:50 +0000 http://dentedreality.com.au/?p=4670#comment-4117 Great analysis for the peoples who want to explore about web service , i am just searching the best to use for my own website i would like to use OAuth as rayan said its in PHP, i dont think so i can create issues in future. Great analysis for the peoples who want to explore about web service , i am just searching the best to use for my own website i would like to use OAuth as rayan said its in PHP, i dont think so i can create issues in future.

]]> By: Max’ Lesestoff zum Wochenende | PHP hates me - Der PHP Blog http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-1944 Max’ Lesestoff zum Wochenende | PHP hates me - Der PHP Blog Sat, 22 May 2010 04:58:20 +0000 http://dentedreality.com.au/?p=4670#comment-1944 [...] Web Service Authentication APIs « Dented Reality Übersicht über APIs wie Flickr, Delicious, MySpace, … und deren verwendete Authentifizierungsmethode (OAuth, HTTP, OpenId, …). Blacksheep’s Paradise // Routing translations Thomas Weidner erklärt das neue Feature von Zend_Translate das im nächsten Minor-Release zur Verfügung steht: Translation Routing. • Why are interfaces widely ignored in the PHP world and what use do they have when working with symfony? | test.ical.ly Christian schreibt über Interfaces in PHP und warum sie in der PHP Welt gerne ignoriert werden Font Squirrel | Create Your Own @font-face Kits Generator der aus normalen Schriftarten passende Webfonts macht inklusive nötiger CSS-Einbindung Facing Fonts in HTML « coding@scribd Scribd erklärt hier in einem Dreiteiler wie sie komplexe Webfonts in HTML5 realisieren Response Time Overview Bei welchen Antwortzeiten sollte man dem Benutzer visuell benachrichtigen und wie. The GitHub Stoplight – Ideas For Dozens Das nenne ich mal eine sehr coole Idee um den aktuellen Stand des Builds darzustellen! Max Stockner [...] [...] Web Service Authentication APIs « Dented Reality Übersicht über APIs wie Flickr, Delicious, MySpace, … und deren verwendete Authentifizierungsmethode (OAuth, HTTP, OpenId, …). Blacksheep’s Paradise // Routing translations Thomas Weidner erklärt das neue Feature von Zend_Translate das im nächsten Minor-Release zur Verfügung steht: Translation Routing. • Why are interfaces widely ignored in the PHP world and what use do they have when working with symfony? | test.ical.ly Christian schreibt über Interfaces in PHP und warum sie in der PHP Welt gerne ignoriert werden Font Squirrel | Create Your Own @font-face Kits Generator der aus normalen Schriftarten passende Webfonts macht inklusive nötiger CSS-Einbindung Facing Fonts in HTML « coding@scribd Scribd erklärt hier in einem Dreiteiler wie sie komplexe Webfonts in HTML5 realisieren Response Time Overview Bei welchen Antwortzeiten sollte man dem Benutzer visuell benachrichtigen und wie. The GitHub Stoplight – Ideas For Dozens Das nenne ich mal eine sehr coole Idee um den aktuellen Stand des Builds darzustellen! Max Stockner [...]

]]> By: wp-popular.com » Blog Archive » Web Service Authentication APIs « Dented Reality http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-1752 wp-popular.com » Blog Archive » Web Service Authentication APIs « Dented Reality Fri, 19 Feb 2010 02:44:56 +0000 http://dentedreality.com.au/?p=4670#comment-1752 [...] Read more: Web Service Authentication APIs « Dented Reality [...] [...] Read more: Web Service Authentication APIs « Dented Reality [...]

]]> By: beaulebens http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-1699 beaulebens Mon, 25 Jan 2010 20:02:34 +0000 http://dentedreality.com.au/?p=4670#comment-1699 Yeah that's a major stumbling block actually. Not sure that there's a good solution to it given the way that OAuth works. For part of what I'm doing, it's looking like I might have to use the HTTP Basic approach, as much as I hate that. Yeah that's a major stumbling block actually. Not sure that there's a good solution to it given the way that OAuth works. For part of what I'm doing, it's looking like I might have to use the HTTP Basic approach, as much as I hate that.

]]> By: Ryan McCue http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-1692 Ryan McCue Mon, 25 Jan 2010 08:51:41 +0000 http://dentedreality.com.au/?p=4670#comment-1692 The problem with OAuth in open source PHP-based software is that you have to either distribute the key (bad), force users to get their own key (worse) or make your own proxy (bad for server load). I'm yet to find a good way to do this, which is why I'm still using the old basic auth API with Twitter. :/ The problem with OAuth in open source PHP-based software is that you have to either distribute the key (bad), force users to get their own key (worse) or make your own proxy (bad for server load). I'm yet to find a good way to do this, which is why I'm still using the old basic auth API with Twitter. :/

]]> By: beaulebens http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-1698 beaulebens Mon, 25 Jan 2010 00:45:22 +0000 http://dentedreality.com.au/?p=4670#comment-1698 That's a very good point. In most of the cases above, there's no such thing as a pure authentication API, although I guess depending on the privileges your application requested (especially for something like OAuth), then it could act as an authentication API if it was just "verify your account details" privileges. That's a very good point. In most of the cases above, there's no such thing as a pure authentication API, although I guess depending on the privileges your application requested (especially for something like OAuth), then it could act as an authentication API if it was just "verify your account details" privileges.

]]> By: westi http://dentedreality.com.au/2010/01/web-service-authentication-apis/comment-page-1/#comment-1690 westi Sun, 24 Jan 2010 10:09:46 +0000 http://dentedreality.com.au/?p=4670#comment-1690 Note that these APIs are for Authorization not Authentication - these are two different things! It seems that the twitter OAuth api gets particularly misused as an authentication rather than authorization api which is a pet hate of mine - so many websites ask you to log in with your twitter identity when actually they are asking for authentication to 'impersonate' you to twitter (and hence get access to all your data stored by twitter - PMs etc.) Note that these APIs are for Authorization not Authentication – these are two different things!

It seems that the twitter OAuth api gets particularly misused as an authentication rather than authorization api which is a pet hate of mine – so many websites ask you to log in with your twitter identity when actually they are asking for authentication to 'impersonate' you to twitter (and hence get access to all your data stored by twitter – PMs etc.)

]]>