2008/5/1 Frederik Ramm <[EMAIL PROTECTED]>: > there would > have to be a way for this outside thing to issue API requests "on > behalf of" a certain user, and ideally without the user having to give > away his password. I'm confident this will be solved (and give us > single login for other services along the way). >
I was trying to stay out of this thread, but someone should really mention OAuth at this point. I'm not sure if anyone is working on this already for OSM, but it's rapidly emerging as a de-facto standard for delegated authentication, getting rid of the password anti-pattern. I believe Rails libraries are available. http://oath.net Tom. _______________________________________________ dev mailing list [email protected] http://lists.openstreetmap.org/cgi-bin/mailman/listinfo/dev
