On Tue, Apr 1, 2008 at 8:33 AM, Paul Walker <[EMAIL PROTECTED]> wrote: > 3. External app server to server requests > This context constitutes the requests that may be made by > external web site/desktop/device applications....the use cases well > outlined in the access delegation portion of the OAuth spec in which an > external application requires a session based oauth_token in order to > access a user's resources. The token contains the context of the > user/application/timestamp/and any additional non-standard permissions > the application may require. Some partners apps are able to skip the > first few steps and obtain the token directly if the user is logged in > as we will look for the auth cookie and provide them the token > immediately. Some applications have longer lived tokens upon request > and the user is able to grant a pseudo permanent token upon > authentication if they choose "Don't ask me again" as well as manage the > tokens given to external applications within MySpace. We have a demo of > this context on our developer site here: > http://developer.myspace.com/modules/apis/pages/accessdelegationtool.asp > x.
I've read this a few times, and I have to admit I still don't understand it. Would you be willing to break this down a little further, maybe offer a step by step example?
