Hello there, I am relatively new to OAuth... I am creating an iPhone App which uses a REST Web Service (Jersey) to send JSON based data to a Java middle tier app server (JBoss).
Have been looking around for something which will secure the entire system. I am not only concerned with authenticating logins, but every REST request has to be individually validated. The key/hash solution is applied to every request whether or not it is a login. Some question(s): (1) Is OAuth viable for an iPhone app written in Objective-C? (2) What I am wondering is if OAuth is the framework of choice when requiring an iPhone app authenticate its requests to the server? (3) Does OAuth require SSL? (3) Does it validate the client (not just the user)? (4) What are the pros / cons of using OAuth? (5) For my purposes, is SSL necessary (will enabling it impact performance)? (6) What is the difference between OAuth and REST Identity Services < http://developers.sun.com/identity/reference/techart/id-svcs.html >? Would really be grateful if someone could answer some of my questions... Happy coding, Mike --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
