u can delete but u cannot know the password. or should not. what u want is to "translate" a 3rd party oauth authentication into a _session cookie. so u either store the association link ext_auth--cookie yourself, or (cookies expire) a link ext_auth--internal_oauth (generated at user-creation) or.. why not the _session doing the oauth ?
On Fri, 3 May 2013 18:27:56 +0400 Michael Bykov <[email protected]> wrote: > 2013/5/3 Robert Newson <[email protected]> > > You can't because, if you think about it, if you could login as > > someone without knowing their password it would defeat the purpose > > of authentication. :) > > > > B. > > > > > > > Robert, > > no, they (users) are authenticated by FB, they clicked "submit" > button by their own hands. I have to just redirect them from one port > (node server) to :5984. So I need a cookie. I am a server admin, I > can even delete them completely, not only authenticate. If you think > about it :) > > M.
