On Tue, Apr 28, 2009 at 7:42 AM, Chris Messina <[email protected]> wrote: > Is OAuth this hard for everyone else? > http://kentbrewster.com/oauth-confessions/
I think that we agree that OAuth *is* complex, and has a few hard points (specially about the signing process e.g. the signature base string composition) but if we think at what it's trying to do (passing authorization around in a three subjects dance across untrusted channels) that's understandable. These are the things that have helped me (might be banal, might be not...): - read the spec, try to understand the steps, - look at the examples and walkthroughs (specially those at hueniverse.com ) - look at the examples from the library of your choice (the ruby one in my case) - try out with the test providers - read the mailing list Luca --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
