Return-Path: X-Original-To: apmail-couchdb-user-archive@www.apache.org Delivered-To: apmail-couchdb-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 44026E0AE for ; Sat, 16 Feb 2013 12:58:26 +0000 (UTC) Received: (qmail 63713 invoked by uid 500); 16 Feb 2013 12:58:24 -0000 Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org Received: (qmail 63544 invoked by uid 500); 16 Feb 2013 12:58:20 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 63519 invoked by uid 99); 16 Feb 2013 12:58:19 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 16 Feb 2013 12:58:19 +0000 X-ASF-Spam-Status: No, hits=1.8 required=5.0 tests=HTML_MESSAGE,PLING_QUERY,RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of mikeyharding@gmail.com designates 209.85.214.182 as permitted sender) Received: from [209.85.214.182] (HELO mail-ob0-f182.google.com) (209.85.214.182) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 16 Feb 2013 12:58:11 +0000 Received: by mail-ob0-f182.google.com with SMTP id va7so4394121obc.27 for ; Sat, 16 Feb 2013 04:57:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:date:message-id:subject:from:to :content-type; bh=Egpq/vCVQGJozNILiCqJKyOaJsTDDdOmBLa3NOkB7JI=; b=k2cpM2SjMJkmFIJ5D3k8iQWBCx9YUsIezyeE5/+iJ2zxErSTLLFSJ0r1rSo2m0E59Y PDKrgMpD4kN7Ppr9B3aRVEjOrEz7/0PsVj/Rr9Do1Dy4UXYQiMAf0GqhXTwir2t42njz bOV6mOZ2ATbLANX0d7wIDqaXfiWHkIVAwJUSpM+Ds2TPQ5iek2rsNoBo8+Vo+TS6dfCN 5x2UbmMoIbvsrIuuDLZXeK2G1/APUk7nhiuLM+qF/2EVE1WmK2HvQxIhx/hvs/ZYoRFi aeaxnS+1UoiRO6wbf2aLb6DRj4R1FVytOyHoIOSa9W71eETpDiJsxsyYGE+6ykx1VAiz SAcA== MIME-Version: 1.0 X-Received: by 10.60.172.71 with SMTP id ba7mr3711103oec.50.1361019470360; Sat, 16 Feb 2013 04:57:50 -0800 (PST) Received: by 10.76.163.35 with HTTP; Sat, 16 Feb 2013 04:57:50 -0800 (PST) Date: Sat, 16 Feb 2013 12:57:50 +0000 Message-ID: Subject: Help! 2-legged OAuth Example Anyone? From: Mike Harding To: user@couchdb.apache.org Content-Type: multipart/alternative; boundary=bcaec54c525210308a04d5d70a6b X-Virus-Checked: Checked by ClamAV on apache.org --bcaec54c525210308a04d5d70a6b Content-Type: text/plain; charset=ISO-8859-1 Hi All, I'm using CouchDB 1.2.1 and I want to leverage 2-legged OAuth. What I want to do is allow a external consumer application to create a _users document (account) and provide the developer of the consumer app with a consumer key and secret to protect requests. I just cant for the life of me get my head around how I create a _user document for the developer of the consumer application that includes the allocated consumer key and secret and then can use the _users authentication and authorization API to validate signed requests. there is a bit of description here http://wiki.apache.org/couchdb/Link_Collection_Authentication_and_Authorizationabout the structure of the _user document for an oauth user but I dont see any practicial examples (ideally in php) that show how I can use the integrated OAuth to authenticate consumer app requests. Any help would be much appreciated. Thanks M --bcaec54c525210308a04d5d70a6b--