Return-Path: X-Original-To: apmail-cxf-dev-archive@www.apache.org Delivered-To: apmail-cxf-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 2F2D59480 for ; Mon, 19 Sep 2011 13:35:59 +0000 (UTC) Received: (qmail 85199 invoked by uid 500); 19 Sep 2011 13:35:58 -0000 Delivered-To: apmail-cxf-dev-archive@cxf.apache.org Received: (qmail 85111 invoked by uid 500); 19 Sep 2011 13:35:58 -0000 Mailing-List: contact dev-help@cxf.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cxf.apache.org Delivered-To: mailing list dev@cxf.apache.org Received: (qmail 85100 invoked by uid 99); 19 Sep 2011 13:35:57 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 19 Sep 2011 13:35:57 +0000 X-ASF-Spam-Status: No, hits=-0.7 required=5.0 tests=FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of sberyozkin@gmail.com designates 74.125.82.177 as permitted sender) Received: from [74.125.82.177] (HELO mail-wy0-f177.google.com) (74.125.82.177) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 19 Sep 2011 13:35:48 +0000 Received: by wyh11 with SMTP id 11so6756497wyh.8 for ; Mon, 19 Sep 2011 06:35:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=RxIanvkuisugXbN3yHXCu519ww4l3/g1MKB8UVwvE1M=; b=POruXdUTcdLygTofeaaubFUxye9w9FTdTO7QKPEi93JQTzgGna7rV0+o2U2OV6ZO91 FQxZsHSIKEqd1mBeAQFwdeV7MvRLTgBl8Jy3BIfWh0WwJgsTo50KCMY7ffj7C9NuUrx4 r/5UJGigEIVM9udZi8hJv2zBsetMnTohe3N0M= Received: by 10.227.204.198 with SMTP id fn6mr2757713wbb.96.1316439328753; Mon, 19 Sep 2011 06:35:28 -0700 (PDT) Received: from [10.36.226.4] ([217.173.99.61]) by mx.google.com with ESMTPS id p13sm25946686wbh.13.2011.09.19.06.35.28 (version=SSLv3 cipher=OTHER); Mon, 19 Sep 2011 06:35:28 -0700 (PDT) Message-ID: <4E77451F.5000900@gmail.com> Date: Mon, 19 Sep 2011 14:35:27 +0100 From: Sergey Beryozkin User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.18) Gecko/20110617 Thunderbird/3.1.11 MIME-Version: 1.0 To: dev@cxf.apache.org Subject: OAuth 1.0 contribution on the trunk Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org Hi I've been working during the last week exclusively on migrating a GSOC 2010 contribution from Lukasz Moren to the trunk. It proved to be a high quality contribution - many thanks to Lukasz. I've spent most time last week on trying to make things as simple/trivial as possible, as far as users trying to come up with their own initial OAuth 1.0 applications is concerned. I've tried to bring a number of required packages, classes to a bare minimum and remove a dependency on the OAuth 1.0 Google lib from interfaces to be implemented by users (ex, OAuthDataProvider). Some basic properties from OAuth 2.0 made it too into the model classes as well as some extension properties. JavaDocs and docs to follow, and some changes to OAuthDataProvider and some of the model classes are very likely to happen. I was not sure if we'd keep OAuth 1.0a and (future) OAuth 2.0 modules separately of if we'd replace OAuth 1.0a in time with OAuth 2.0 - probably would make sense to get two modules, unless the OAuth 2.0 impl would be capable of handling OAuth 1.0 users, so for now I chose to have rs/security/oauth-parent oauth oauth-test with the 2nd module containing a Memory provider. This one is duplicated in a demo as I did not want to have the oauth-test dependency there and I think we should write a more interesting DB based provider for a demo anyway Comments are welcome thanks, Sergey