6. OAuth Pin Based Authorization for Twitter, LinkedIn, Imgur and Others
Updated on: 2015-01-18
Posted on: 2014-11-25
Some applications need to access OAuth based APIs but since they are not based on regular Web browsers, they need to need to use an alternative method to obtain the user authorization.
Pin based authorization is a method used for instance by applications based on the command line, desktop applications, embedded systems, game consoles, and certain types of mobile apps.
Read this article to learn how the pin based OAuth authorization process works and how can you implement it in your applications using the PHP OAuth API class.
More ... Post a comment See comments (1) Trackbacks (0)
Pin based authorization is a method used for instance by applications based on the command line, desktop applications, embedded systems, game consoles, and certain types of mobile apps.
Read this article to learn how the pin based OAuth authorization process works and how can you implement it in your applications using the PHP OAuth API class.
More ... Post a comment See comments (1) Trackbacks (0)
5. 4 Ways to Access an API using OAuth Without User Interaction - OAuth2 Automatic Login with Facebook, Google or Any Other API
Updated on: 2017-04-26
Posted on: 2014-11-10
OAuth is a protocol used to access APIs on behalf of an user but the user does not need to be present when the API is accessed.
There are even ways that allow applications to access APIs using tokens obtained without any user intervention, thus allowing greater application automation.
Read this article to learn about several ways to access a OAuth based API without the user presence to access OAuth2 based APIs like Facebook, Google, Google Drive, Gmail, Blogger Blogspot, Twitter, Magento, Salesforce, etc...
More ... Post a comment See comments (8) Trackbacks (0)
There are even ways that allow applications to access APIs using tokens obtained without any user intervention, thus allowing greater application automation.
Read this article to learn about several ways to access a OAuth based API without the user presence to access OAuth2 based APIs like Facebook, Google, Google Drive, Gmail, Blogger Blogspot, Twitter, Magento, Salesforce, etc...
More ... Post a comment See comments (8) Trackbacks (0)
4. Is Your OAuth 2.0 Application Secure?
Updated on: 2014-05-26
Posted on: 2014-05-26
Recently, a security vulnerability named Covert Redirect was discovered in certain implementations of the OAuth 2.0 protocol.
If you have a site that uses OAuth to access the APIs of other sites on behalf of your users, your site may be inadvertently helping attackers to steal your users' data.
Read this article to learn how to check if your application is vulnerable and what you can do to fix it.
More ... Post a comment See comments (3) Trackbacks (0)
If you have a site that uses OAuth to access the APIs of other sites on behalf of your users, your site may be inadvertently helping attackers to steal your users' data.
Read this article to learn how to check if your application is vulnerable and what you can do to fix it.
More ... Post a comment See comments (3) Trackbacks (0)
3. Moving OAuth Server Configuration to Separate Files
Updated on: 2014-02-04
Posted on: 2014-02-04
As the OAuth class supports more and more servers, it is because too large, moving the server configuration to separate files is necessary to keep the class more maintainable.
Read this article to learn how you can help to decide how the class will evolve in the future without breaking the applications that use it.
More ... Post a comment See comments (11) Trackbacks (0)
Read this article to learn how you can help to decide how the class will evolve in the future without breaking the applications that use it.
More ... Post a comment See comments (11) Trackbacks (0)
2. Google OAuth Offline Access and to Other API with Limited Lifetime Refresh Tokens After their Expiry
Updated on: 2017-01-15
Posted on: 2013-04-23
Some applications require access to APIs on behalf of the user even when the user is not present, i.e. offline access.
OAuth is a protocol that allows applications to obtain a token to access an API when the user is not present but when the tokens expire they need to be renewed.
Some APIs like Google and Box.net support automatic renewal of expired tokens.
Read this article to learn how to use this OAuth client class to perform offline access to an API storing tokens in a database and how to have expired tokens automatically renewed.
More ... Post a comment See comments (16) Trackbacks (0)
OAuth is a protocol that allows applications to obtain a token to access an API when the user is not present but when the tokens expire they need to be renewed.
Some APIs like Google and Box.net support automatic renewal of expired tokens.
Read this article to learn how to use this OAuth client class to perform offline access to an API storing tokens in a database and how to have expired tokens automatically renewed.
More ... Post a comment See comments (16) Trackbacks (0)
1. PHP OAuth Tutorial on How to Use a Pure PHP OAuth Class with an Example Without using the PECL module Implementation
Updated on: 2017-02-27
Posted on: 2012-10-10
OAuth is a widely used protocol to access APIs of certain Web sites on behalf of users of those sites.
Despite OAuth is relatively easy to explain, it is not easy to implement it without dealing with the headaches of the multiple protocol settings, the different protocol versions, the details of specific site implementations, and the worst of all having to know more about the details of the protocol than you would like to care.
Read this article to learn how to use this PHP OAuth API class to access any API of any site that supports any version of OAuth without having any of those headaches.
More ... Post a comment See comments (81) Trackbacks (0)
Despite OAuth is relatively easy to explain, it is not easy to implement it without dealing with the headaches of the multiple protocol settings, the different protocol versions, the details of specific site implementations, and the worst of all having to know more about the details of the protocol than you would like to care.
Read this article to learn how to use this PHP OAuth API class to access any API of any site that supports any version of OAuth without having any of those headaches.
More ... Post a comment See comments (81) Trackbacks (0)