oauth

问题 When trying to execute service.getRequestToken() from scribe library (Version 1.3.5) for using oauth with twitter api I always get "SSL is required" as response. I have already checked all my configurations but there is https everywhere. 回答1: In version 1.3.5 of scribe-java, the method getRequestTokenEndpoint() of TwitterApi uses the non-SSL version of the URL. In version 1.3.6 this has been fixed. Unfortunetaly, this version has not yet made its way to the downloads section (http:/

问题 I need to get Facebook display a "Log in to Facebook" prompt rather than a "Go to App" action when performing OAuth. In order to do this, I need to specify "display=popup" as part of the request. How can I do this when performing OAuth with DotNetOpenAuth 4 using their WebServerClient object? It seems in previous versions there was a requestParameters parameter in PrepareRequestUserAuthorization but now it just takes an IEnumerable listing scopes. Thanks 回答1: Add the display=popup query

问题 a little background: I have an hotspot page wich integrate with facebook login oatuh. The app runs on facebook api v.2.4 and uses node/express/passport to handle the login process The only option i pass to the oauth fb page is display: touch, so the login page works fine without cookie support the issue: since a few days , only on osx 10.11/cna the login can't be processed because of no cookie support in CNA (this should mean that fb ignores the display option, in this case only) the same

问题 Scenario: A controller process obtains a short-lived JWT access token and a refresh token handle using client credentials grant. The controller spawns one or more isolated worker nodes and passes the access and refresh token to the node(s). The child node may continue with a long running task where the access token may expire and a refresh needs to occur. In a background thread, before expiration, the agent refreshes its token, the access token is regenerated. The need for short lived access

问题 Using Google Plus SDK for sign-in. Everything works great at first, but appears that the oauth token is expiring after about 1 hour. I am following the recommendations on Google's site and using [signIn trySilentAuthentication] in viewDidAppear function. I know the token is expired because I am using Oauth on my server and getting a 401 response. Also worth noting that this is not a problem if the iPhone/iPad is left plugged in with the screen on. In this case the app works indefinitely

问题 I'm working through the instructions to use OAuth2 to get access to Gmail in an installed (Windows) application, on the page https://developers.google.com/identity/protocols/OAuth2InstalledApp. It all seems straightforward until I get to the part about "making a token request". One of the parameters to the POST I have to do is redirect_uri, which it says is "The redirect URI you obtained from the Developers Console." I have obtained my ClientID and ClientSecret from the Developers Console,

问题 I'm working through the instructions to use OAuth2 to get access to Gmail in an installed (Windows) application, on the page https://developers.google.com/identity/protocols/OAuth2InstalledApp. It all seems straightforward until I get to the part about "making a token request". One of the parameters to the POST I have to do is redirect_uri, which it says is "The redirect URI you obtained from the Developers Console." I have obtained my ClientID and ClientSecret from the Developers Console,

问题 Closed . This question is opinion-based. It is not currently accepting answers. Want to improve this question? Update the question so it can be answered with facts and citations by editing this post. Closed last year . I am building an Android app - a key part of which will include integration with a server API. The app is just a side-project and I am really just looking for validation of my planned API security and suggestions of best practice and how other apps do it. The application will

问题 Closed . This question is opinion-based. It is not currently accepting answers. Want to improve this question? Update the question so it can be answered with facts and citations by editing this post. Closed last year . I am building an Android app - a key part of which will include integration with a server API. The app is just a side-project and I am really just looking for validation of my planned API security and suggestions of best practice and how other apps do it. The application will

问题 I've been searching web for a few days, and I am totally confused. I would like to add "Sign In with Google+" button to my android app. All I need from user is his name, email (if possible) and ID. Google suggests to use it's library, but I believe that it is to heavy solution for my purposes. I know that I should use OAuth, but I don't know what API I should use. Can someone point me where should I start? 回答1: Actually I do recommend to use Google's own client, this would be GoogleAPIClient