[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 225
  • Last Modified:

OAuth and servers

My understanding of OAuth is the following:

    - client sends request token during redirect to server
    - Server displays authorization screen to resource owner
    - Resource owner provides uid and pw (not passed to client)
    - Server sends access token back to client
    - clients then users the Access token to gain access to a 
      resource

Open in new window


So I want to learn how to write a web service using OAuth.

Is there a web site I can communicate with that uses OAuth for my web service.  Something like yahoo, google, etc.  But this woud probably require previous exchange of tokens.  

So do I actually have to write a server as well ?

I am writing a client, and need a server to communicate with, what is the easiest path from here ?

Thanks
0
Anthony Lucia
Asked:
Anthony Lucia
  • 2
2 Solutions
 
Mayank SAssociate Director - Product EngineeringCommented:
The client doesn't send any tokens to the server. The server creates and sends tokens to the client. I had explained it in this question clearly in detail as to what is created by whom and how these are exchanged:

http://www.experts-exchange.com/Security/Misc/Q_28490363.html
0
 
Mayank SAssociate Director - Product EngineeringCommented:
You can also try to communicate with an existing server that supports O-Auth, e.g., Twitter.

You can use Google Signpost for creating the client. Look at some sample code:

https://code.google.com/p/oauth-signpost/wiki/TwitterAndSignpost

https://github.com/mttkay/signpost-examples
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now