MozillaWiki

Privacy/BestPractices/OAuth: Difference between revisions

Page Discussion

Privacy/BestPractices/OAuth (view source)

Revision as of 22:42, 23 May 2011

33 bytes removed ,  23 May 2011
→‎Establishing Credentials
Line 17: Line 17:
* a user interacting with a data consumer decides to connect it to her data host, triggering the consumer to redirect the user to the data host with a permission request.
* a user interacting with a data consumer decides to connect it to her data host, triggering the consumer to redirect the user to the data host with a permission request.


* the user is prompted to approve the request from the specified data consumer, at which point the data host redirects the user's browser to the data consumer with a confirmation code.
* the user is prompted to approve the request, at which point the data host redirects the user's browser to the data consumer with a confirmation code.


* the data consumer makes an API call to the data host, authenticated with the consumer's credentials, exchanging the confirmation code for an <tt>access_token</tt> (and, in OAuth 1.0, an <tt>access_token_secret</tt>).
* the data consumer makes an API call to the data host, authenticated with the consumer's credentials, exchanging the confirmation code for an <tt>access_token</tt> (and, in OAuth 1.0, an <tt>access_token_secret</tt>).
BenAdida
668

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/311458"