couchdb-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Doug <douglas.lin...@gmail.com>
Subject OAuth example
Date Tue, 02 Nov 2010 01:34:35 GMT
Can anyone point me in the right direction to see an oauth example?

I've seen this page:
http://wiki.apache.org/couchdb/Authentication_and_Authorization

...but that doesn't seem to be anything useful.

Web oauth typically works like this:

1) Get a request token.
2) Send the user to a login page and pass the request token.
3) User gets redirected back to a separate url with an authorised request
token.
4) Send the authorised request token in and get an access token.

5+) Send all requests signed by the access token.

I've reviewed the code here:
https://issues.apache.org/jira/browse/COUCHDB-420

...and it looks like it does actually check for validly signed requests, but
I don't really get how to:

1) Get a request token.

2) Authorise it.

3) Get an access token.

4) Mark a request as signed via oauth.

I might have misunderstood, but the example seems to assume that you already
know what you access token is before you start and just skipped over steps
1-3.

Anyone actually managed to get this to work from a desktop / web app,
instead of just that one specific python example?

~
Doug.

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message