John Panzer <[EMAIL PROTECTED]> Fri, 2 Nov 2007 17:35:31 >Two answers: > >(1) For interactions mediated through your container page to your own >server via XHR, you can use your own auth mechanisms (cookies or extra >headers for example). This should cover most use cases. > >(2) We're not expecting the rest of the world to implement the server >side of AuthSub. We'd like to use an open standard for this, and we're >looking hard at OAuth (http://oauth.net ) for this purpose. If this >happens of course we'd accept OAuth credentials as well as AuthSub in >our own REST API. Feedback is welcomed!
Now there's an interesting comment! Absolutely. OAuth for application authentication and OpenID for user based authentication. -- Julian Bond E&MSN: julian_bond at voidstar.com M: +44 (0)77 5907 2173 Webmaster: http://www.ecademy.com/ T: +44 (0)192 0412 433 Personal WebLog: http://www.voidstar.com/ skype:julian.bond?chat *** Just Say No To DRM *** --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OpenSocial Container Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/opensocial-container?hl=en -~----------~----~----~----~------~----~------~--~---
