Return-Path: 
 <dev-return-17227-apmail-couchdb-dev-archive=couchdb.apache.org@couchdb.apache.org>
X-Original-To: apmail-couchdb-dev-archive@www.apache.org
Delivered-To: apmail-couchdb-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id C24F16891
	for <apmail-couchdb-dev-archive@www.apache.org>;
 Tue, 19 Jul 2011 09:06:45 +0000 (UTC)
Received: (qmail 89859 invoked by uid 500); 19 Jul 2011 09:06:42 -0000
Delivered-To: apmail-couchdb-dev-archive@couchdb.apache.org
Received: (qmail 89453 invoked by uid 500); 19 Jul 2011 09:06:24 -0000
Mailing-List: contact dev-help@couchdb.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@couchdb.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@couchdb.apache.org>
List-Post: <mailto:dev@couchdb.apache.org>
List-Id: <dev.couchdb.apache.org>
Reply-To: dev@couchdb.apache.org
Delivered-To: mailing list dev@couchdb.apache.org
Received: (qmail 89443 invoked by uid 99); 19 Jul 2011 09:06:21 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 19 Jul 2011 09:06:21 +0000
X-ASF-Spam-Status: No, hits=-0.0 required=5.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: local policy)
Received: from [62.58.108.185] (HELO menagerie.all2all.org) (62.58.108.185)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 19 Jul 2011 09:06:15 +0000
Received: from [IPv6:::1] (lamenagerie.com [127.0.0.1])
	by menagerie.all2all.org (Postfix) with ESMTP id 06AD8801254
	for <dev@couchdb.apache.org>; Tue, 19 Jul 2011 11:05:52 +0200 (CEST)
Message-ID: <4E25493B.9040907@yooook.net>
Date: Tue, 19 Jul 2011 11:07:07 +0200
From: Camille Harang <mammique@yooook.net>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US;
 rv:1.9.2.17) Gecko/20110516 Icedove/3.1.10
MIME-Version: 1.0
To: dev@couchdb.apache.org
Subject: Re: OAuth for authorization (not authentication)
References: <4E2433C8.3040200@yooook.net>
 <CABvT1DETV7VxK9_biM1WzC0BH6Y1-e=TNb4LQriiMSTFuWQyRw@mail.gmail.com>
In-Reply-To: 
 <CABvT1DETV7VxK9_biM1WzC0BH6Y1-e=TNb4LQriiMSTFuWQyRw@mail.gmail.com>
X-Enigmail-Version: 1.1.2
OpenPGP: id=4AF32373;
	url=
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit

Hi again,

Le 18/07/2011 15:44, Robert Newson a �crit :
> As also noted on IRC, you are indeed wrong,

I hope I am, I really tried to find the proper way to fully implement
OAuth authorization layer (tokens, ad hoc grant access in time and
scope: the very essence of OAuth) within the CouchDB intrinsic
techniques and philosophy, but I keep failing.

> you just don't like the
> granularity

I don't dislike or like it, but wherever I look it just appears to me
that there is just not enough of it to match the requirements of a
proper implementation of OAuth. But I believe being wrong, I'm sure I
am, I want to use Couch, can anyone point me the right direction? Once I
know it, I will like it.

Thanks,

Cheers,

Camille.


>  of the operation you are authorized to perform after
> successfully authenticating. :)
>
> B.

-- 
The Good, the Bad and the Ugly under Creative Commons! https://yooook.net/r/lp1