woola: if you deploy your app to their domain, they can log into it...if it's deployed to multiple domains you can check the user's email address...you won't get access to google passwords through app engine.
Kenny: there is stuff on the OpenSocial wiki about implementing OAuth on app engine, which will work for iGoogle...unfortunately it doesn't do it automatically. I'd rather leave the security issues to Google to worry about, so would rather not implement that and take on the risk of stuffing it up :) So, I've had some success using <Content type='url'... type gadgets, but then you don't get the gadgets javascript API easily or fully functional. I had even more limited success using ClientLogin from a gadget, but since makeRequest goes through a proxy and doesn't pass the app engine cookie, every call has to go via _ah/login?contunue=... Built in OAuth would be excellent. 2009/9/9 Kenny Dunn <[email protected]> > > I'm in a similar situation. Although, what I really want is to be able > to securely identify the user of a Google gadget (on their apps > 'iGoogle' page) within the app on the app engine. So far, no luck on > either front. > > On Sep 7, 6:55 pm, woola <[email protected]> wrote: > > Has anyone used Google App Engine to make a simple authentication for > > Google Apps users? > > > > My group uses google apps, and I just want their same logins to be > > able to function for outside of google apps password checks. It seems > > this would be simple in Google App Engine -- anyone have anything? > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en -~----------~----~----~----~------~----~------~--~---
