Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-02 Thread Jóhannes Birgir Jensson
In the OAuth authentication you get the display name and ID of the OSM user, 
you can then use that OSM ID to mark the users contributions in your own db.
2. ágúst 2019 kl. 11:41, skrifaði "Nick Whitelegg" mailto:nick.whitel...@solent.ac.uk?to=%22Nick%20Whitelegg%22%20)>:
 In the light of this discussion, and to follow up my original email, one thing 
I would want to do is associate uploaded panoramas with user IDs, for which I 
would need the OSM user details API. I would need this to only allow a given 
user to rotate or move their own panoramas, and not other users'. I presume 
this would be acceptable (if mentioned on an appropriate privacy policy)?  I 
tried to play around with Mapillary to see how they handle OSM authentication 
but I'm not sure whether it's working correctly- as when I am returned to 
Mapillary after authentication with OSM, I get the error "User does not exist". 
 Nick  

  From: Colin Smale mailto:colin.sm...@xs4all.nl)>
Sent: 02 August 2019 10:15:45
To: dev@openstreetmap.org (mailto:dev@openstreetmap.org) mailto:dev@openstreetmap.org)>; Tigerfell mailto:tigerfell-...@tuta.io)>; Jóhannes Birgir Jensson mailto:j...@betra.is)>
Cc: dev Openstreetmap mailto:dev@openstreetmap.org)>
Subject: Re: [OSM-dev] Use of OSM API for non-editing third party applications
Now you are confusing authentication with authorisation.
On 2 August 2019 10:07:19 BST, Tigerfell mailto:tigerfell-...@tuta.io)> wrote:
  Not necessarily, the API calls user/details 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Details_of_the_logged-in_user 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Details_of_the_logged-in_user)) 
and user/preferences 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Preferences_of_the_logged-in_user 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Preferences_of_the_logged-in_user))
 are used by some services to provide login and user organisation.  Tigerfell  
Aug. 2, 2019, 2:14 a.m. by j...@betra.is (mailto:j...@betra.is):  Hello Martin. 
 I'm afraid you are confusing two different things.  The relevant page for 
authentication is this one  https://wiki.openstreetmap.org/wiki/OAuth 
(https://wiki.openstreetmap.org/wiki/OAuth)   This is a totally different thing 
from the editing API.  Cheers, Jói  1. ágúst 2019 kl. 21:45, skrifaði "Martin 
Koppenhoefer" mailto:dieterdre...@gmail.com?to=%22Martin%20Koppenhoefer%22%20)>:
  
 sent from a phone   On 1. Aug 2019, at 16:21, Jóhannes Birgir Jensson 
mailto:j...@betra.is)> wrote:  I never read anything where it 
said that OSM-auth was only for editing. So I have worked on the assumption 
that the answer would be yes, you can piggyback. 
it’s written here: 
https://wiki.openstreetmap.org/wiki/API#Terms_of_use 
(https://wiki.openstreetmap.org/wiki/API#Terms_of_use) 
Cheers Martin
___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-02 Thread Nick Whitelegg


In the light of this discussion, and to follow up my original email, one thing 
I would want to do is associate uploaded panoramas with user IDs, for which I 
would need the OSM user details API. I would need this to only allow a given 
user to rotate or move their own panoramas, and not other users'. I presume 
this would be acceptable (if mentioned on an appropriate privacy policy)?

I tried to play around with Mapillary to see how they handle OSM authentication 
but I'm not sure whether it's working correctly- as  when I am returned to 
Mapillary after authentication with OSM, I get the error "User does not exist".

Nick

From: Colin Smale 
Sent: 02 August 2019 10:15:45
To: dev@openstreetmap.org ; Tigerfell 
; Jóhannes Birgir Jensson 
Cc: dev Openstreetmap 
Subject: Re: [OSM-dev] Use of OSM API for non-editing third party applications

Now you are confusing authentication with authorisation.

On 2 August 2019 10:07:19 BST, Tigerfell  wrote:
Not necessarily, the API calls
user/details 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Details_of_the_logged-in_user) and
user/preferences 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Preferences_of_the_logged-in_user)
 are used by some services to provide login and user organisation.

Tigerfell

Aug. 2, 2019, 2:14 a.m. by j...@betra.is:
Hello Martin.

I'm afraid you are confusing two different things.

The relevant page for authentication is this one 
https://wiki.openstreetmap.org/wiki/OAuth

This is a totally different thing from the editing API.

Cheers,
Jói

1. ágúst 2019 kl. 21:45, skrifaði "Martin Koppenhoefer" 
mailto:dieterdre...@gmail.com?to=%22Martin%20Koppenhoefer%22%20>>:

sent from a phone

On 1. Aug 2019, at 16:21, Jóhannes Birgir Jensson 
mailto:j...@betra.is>> wrote:
I never read anything where it said that OSM-auth was only for editing. So I 
have worked on the assumption that the answer would be yes, you can piggyback.

it’s written here:
https://wiki.openstreetmap.org/wiki/API#Terms_of_use


Cheers Martin


___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-02 Thread Colin Smale
Now you are confusing authentication with authorisation. 

On 2 August 2019 10:07:19 BST, Tigerfell  wrote:
>Not necessarily, the API calls
>user/details
>(https://wiki.openstreetmap.org/wiki/API_v0.6#Details_of_the_logged-in_user
>)
>and
>user/preferences
>(https://wiki.openstreetmap.org/wiki/API_v0.6#Preferences_of_the_logged-in_user
>)
>are used by some services to provide login and user organisation.
>
>Tigerfell
>
>Aug. 2, 2019, 2:14 a.m. by j...@betra.is:
>
>> Hello Martin.
>>
>> I'm afraid you are confusing two different things.
>>
>> The relevant page for authentication is this one >
>https://wiki.openstreetmap.org/wiki/OAuth
>
>>
>> This is a totally different thing from the editing API.
>>
>> Cheers,
>> Jói
>>
>> 1. ágúst 2019 kl. 21:45, skrifaði "Martin Koppenhoefer" <>
>dieterdre...@gmail.com
>>
>>:
>>  
>>
>>> sent from a phone
>>>
>>> On 1. Aug 2019, at 16:21, Jóhannes Birgir Jensson <>> j...@betra.is
>>> > wrote:
>>>
 I never read anything where it said that OSM-auth was only for
>editing. So I have worked on the assumption that the answer would be
>yes, you can piggyback.

>>>
>>> it’s written here:
>>> https://wiki.openstreetmap.org/wiki/API#Terms_of_use
>
>>>
>>>
>>> Cheers Martin
>>>
>>
>>
___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-02 Thread Tigerfell
Not necessarily, the API calls
user/details 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Details_of_the_logged-in_user 
) 
and
user/preferences 
(https://wiki.openstreetmap.org/wiki/API_v0.6#Preferences_of_the_logged-in_user 
)
 are used by some services to provide login and user organisation.

Tigerfell

Aug. 2, 2019, 2:14 a.m. by j...@betra.is:

> Hello Martin.
>
> I'm afraid you are confusing two different things.
>
> The relevant page for authentication is this one > 
> https://wiki.openstreetmap.org/wiki/OAuth 
> 
>
> This is a totally different thing from the editing API.
>
> Cheers,
> Jói
>
> 1. ágúst 2019 kl. 21:45, skrifaði "Martin Koppenhoefer" <> 
> dieterdre...@gmail.com 
> >
>  >:
>  
>
>> sent from a phone
>>
>> On 1. Aug 2019, at 16:21, Jóhannes Birgir Jensson <>> j...@betra.is 
>> >> > wrote:
>>
>>> I never read anything where it said that OSM-auth was only for editing. So 
>>> I have worked on the assumption that the answer would be yes, you can 
>>> piggyback.
>>>
>>
>> it’s written here:
>> https://wiki.openstreetmap.org/wiki/API#Terms_of_use 
>> 
>>
>>
>> Cheers Martin
>>
>
>

___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-01 Thread Jóhannes Birgir Jensson
Hello Martin.

I'm afraid you are confusing two different things.

The relevant page for authentication is this one 
https://wiki.openstreetmap.org/wiki/OAuth 
(https://wiki.openstreetmap.org/wiki/OAuth)

This is a totally different thing from the editing API.

Cheers,
Jói

1. ágúst 2019 kl. 21:45, skrifaði "Martin Koppenhoefer" mailto:dieterdre...@gmail.com?to=%22Martin%20Koppenhoefer%22%20)>:
 sent from a phone  
On 1. Aug 2019, at 16:21, Jóhannes Birgir Jensson mailto:j...@betra.is)> wrote:
  I never read anything where it said that OSM-auth was only for editing. So I 
have worked on the assumption that the answer would be yes, you can piggyback. 
it’s written here: 
https://wiki.openstreetmap.org/wiki/API#Terms_of_use 
(https://wiki.openstreetmap.org/wiki/API#Terms_of_use) 
Cheers Martin
___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-01 Thread Martin Koppenhoefer


sent from a phone

> On 1. Aug 2019, at 16:21, Jóhannes Birgir Jensson  wrote:
> 
> I never read anything where it said that OSM-auth was only for editing. So I 
> have worked on the assumption that the answer would be yes, you can piggyback.


it’s written here:
https://wiki.openstreetmap.org/wiki/API#Terms_of_use


Cheers Martin ___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-01 Thread Nick Whitelegg

OK, many thanks for that - good to know that there's prior precedent.


Thanks,

Nick



From: Jóhannes Birgir Jensson 
Sent: 01 August 2019 15:21:56
To: Nick Whitelegg ; dev Openstreetmap 

Subject: Re: [OSM-dev] Use of OSM API for non-editing third party applications

My data quantifier concept tool does use OSM authentication for logins and does 
not edit OSM data (http://osm.hlidskjalf.is/ ).

I never read anything where it said that OSM-auth was only for editing. So I 
have worked on the assumption that the answer would be yes, you can piggyback.

-- Jói / Stalfur



1. ágúst 2019 kl. 11:58, skrifaði "Nick Whitelegg" 
mailto:nick.whitel...@solent.ac.uk?to=%22Nick%20Whitelegg%22%20>>:

Hi,

I'm just asking something which was raised as an issue in my Gitlab repository 
for OpenTrailView (www.opentrailview.org<http://www.opentrailview.org>; fully 
FOSS 360 panorama site which uses OSM ways to connect panoramas together).

The person who raised the issue requested that OSM logins be used on 
OpenTrailVIew rather than (as currently) its own login system. I suspect the 
reason is security-related as it allows users to use an existing trusted 
authentication system.

As OpenTrailView does not include provision for editing OSM data, I suspect the 
answer is no - but is it acceptable for third-party OSM-related sites which do 
not edit the data to 'piggyback' on OSM's authentication system like this?

Thanks,

Nick


___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-01 Thread Jóhannes Birgir Jensson
My data quantifier concept tool does use OSM authentication for logins and does 
not edit OSM data (http://osm.hlidskjalf.is/ (http://osm.hlidskjalf.is/) ).

I never read anything where it said that OSM-auth was only for editing. So I 
have worked on the assumption that the answer would be yes, you can piggyback.

-- Jói / Stalfur
1. ágúst 2019 kl. 11:58, skrifaði "Nick Whitelegg" mailto:nick.whitel...@solent.ac.uk?to=%22Nick%20Whitelegg%22%20)>:
Hi, 

I'm just asking something which was raised as an issue in my Gitlab 
repository for OpenTrailView (www.opentrailview.org 
(http://www.opentrailview.org); fully FOSS 360 panorama site which uses OSM 
ways to connect panoramas together). 

The person who raised the issue requested that OSM logins be used on 
OpenTrailVIew rather than (as currently) its own login system. I suspect the 
reason is security-related as it allows users to use an existing trusted 
authentication system. 

As OpenTrailView does not include provision for editing OSM data, I 
suspect the answer is no - but is it acceptable for third-party OSM-related 
sites which do not edit the data to 'piggyback' on OSM's authentication system 
like this? 

Thanks, 

Nick
___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev


Re: [OSM-dev] Use of OSM API for non-editing third party applications

2019-08-01 Thread Simon Poole

There is a large amount of precedent, for example mapillary, maproulette
and lots that I've forgotten. So the answer is likely that while the
website-devs are not in love with it, it is perfectly acceptable.


Simon


Am 01.08.2019 um 13:52 schrieb Nick Whitelegg:
>
> Hi,
>
>
> I'm just asking something which was raised as an issue in my Gitlab
> repository for OpenTrailView (www.opentrailview.org
> ; fully FOSS 360 panorama site which
> uses OSM ways to connect panoramas together).
>
>
> The person who raised the issue requested that OSM logins be used on
> OpenTrailVIew rather than (as currently) its own login system. I
> suspect the reason is security-related as it allows users to use an
> existing trusted authentication system.
>
>
> As OpenTrailView does not include provision for editing OSM data, I
> suspect the answer is no - but is it acceptable for third-party
> OSM-related sites which do not edit the data to 'piggyback' on OSM's
> authentication system like this?
>
>
> Thanks,
>
> Nick
>
>
>
> ___
> dev mailing list
> dev@openstreetmap.org
> https://lists.openstreetmap.org/listinfo/dev


signature.asc
Description: OpenPGP digital signature
___
dev mailing list
dev@openstreetmap.org
https://lists.openstreetmap.org/listinfo/dev