668
edits
Changes
→Central OAuth Pattern
* authenticating API calls: the consumer uses credentials to authenticate its API calls against the data host.
=== Central OAuth Pattern Establishing Credentials ===
* the consumer registers with the data host and obtains a <tt>consumer_key</tt>, which is considered public, and a <tt>consumer_secret</tt>, which should be kept private.
* the user is prompted to approve the request from the specified data consumer, at which point the data host redirects the user's browser to the data consumer with a confirmation code. * the data consumer makes a direct API call to === Making API Calls:** foo===
=== Differences between OAuth 1.0 and 2.0 ===