No - they don't log in before I request authorization. I get their access token without having any idea who they are.
That's what I'm trying to avoid - I don't want to have any login stuff on my side so the login is as easy as possible. On Mar 26, 9:45 am, GraemeF <[email protected]> wrote: > If they have to log in before you request authorization, can't you > just store the token with the login credentials (in your db) and use > it next time? > > G. > > On Mar 25, 8:19 pm, Elliott Kember <[email protected]> wrote: > > > > > Well, I've had it working for a while now using Rails. All this > > solution needs is an "Always authorize this app" button. > > > The way I do it is: I request an OAuth token, and then call > > verify_credentials with it to find out who they are. It seems to work > > fine, except it forces the user to click "Allow" every time they log > > in.
