OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [security-services] OAuth as a potential HTTP server-to-server binding for SAML


Also for reference, Jeff Hodges does a good of illustrating both
2-legged and 3-legged OAuth:

http://identitymeme.org/doc/draft-hodges-oauth-05-figures.txt

I've found these references useful as well:

http://www.hueniverse.com/hueniverse/2007/09/explaining-oaut.html
http://www.hueniverse.com/hueniverse/2007/10/beginners-guide.html
http://www.hueniverse.com/hueniverse/2007/10/beginners-gui-1.html
http://www.hueniverse.com/hueniverse/2008/10/beginners-guide.html
http://www.hueniverse.com/hueniverse/2008/10/beginners-gui-1.html

The last two articles, in particular, show how to use OAuth to sign an
HTTP request using a technique that is at least as simple as
SimpleSign but more general.

Tom

On Tue, Oct 7, 2008 at 1:05 PM, George Fletcher
<george.fletcher@corp.aol.com> wrote:
> Just as pure reference... here is one write up from Google on using 2-legged
> OAuth for OpenSocial restful apis
>
> https://sites.google.com/site/oauthgoog/2leggedoauth/2opensocialrestapi
>
> Thanks,
> George
>
>
> ---------------------------------------------------------------------
> To unsubscribe from this mail list, you must leave the OASIS TC that
> generates this mail.  Follow this link to all your TCs in OASIS at:
> https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php
>


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]