Get Satisfaction uses Javascript and cookies.

You'll need to enable Javascript and cookies to log-in and participate.

Share Follow

Like this discussion?
Email this to a friend
- Your Name:
- Your Email:
- Email to: Enter up to 5 email addresses separated by commas
- Add an optional message
- Optional Message:
  Character limit of 1000 characters
- Or cancel
Twitter this
Share on Facebook
Get a short URL

Share it on these other sites

7 replies made

6 people participating

1 employee helping

The mood in here

happy 1

silly 0

indifferent 0

sad 2

Products & Services

Consumer Service

Add a product

This topic is tagged

Add a tag

How does OAuth work with non-browser based Consumer applications?

It seems simple and easy, after reading the "get started", to imagine using it in browser applications. How does it work with other kinds of applications? (stand-alone programs, vista gadgets, etc.) There are no redirects there.

Inappropriate?

Reply to this discussion

Follow this discussion to get notifications on your dashboard.

EMPLOYEE

Remove Inappropriate?
Delete or Edit for 15 minutes

Chris Messina, Official Rep, replied on April 25, 2008 16:14

Well, that's the whole point of OAuth. It offers a standard way for dealing with the flow of browser-based authorization.

For desktop applications or gadgets/widgets, you will invariably need to pop open a browser at some point. Or send someone an SMS. Or somehow get them to confirm their account through a secondary method outside the original app. Fortunately this flow is becoming more common.

To see how this flow actually works, check out these screens from iMovie '08. They don't use OAuth, but it's the same flow:

http://www.flickr.com/photos/factoryj...

I’m confident

Add a comment
Remove Inappropriate?
Delete or Edit for 15 minutes

Bart replied on May 17, 2008 12:29

As I use it now is that I do open a browser, just for the granting access step.
In my Java app I've added lobo just for that.

I’m frustrated

Add a comment
Remove Inappropriate?
Delete or Edit for 15 minutes

yongcheng replied on June 16, 2008 10:07

i can not understand the flow:
http://www.flickr.com/photos/factoryj...

1 Comment Add a comment
Remove
Chris Messina, (Official Rep), commented on June 16, 2008 20:08

What don't you understand? Can you be more specific?
Remove Inappropriate?
Delete or Edit for 15 minutes

ecognito replied on June 12, 2009 06:02

wrt embedding a browser in your desktop app just of oauth authentication: I'm a bit leery of that solution, because you end up typing your user/pass into the application's browser window - there's no real guarantee that it isn't pinching those details while it's there.

Another way I thought would be to embed a small HTTP server into your application, so when you need to do oauth authentication it fires the request off to the browser, with a callback URL something like http://127.0.0.1:8765/oauthenticated

The port number would probably be chosen randomly or some such.

Would that work?

1 Comment Add a comment
Remove
Chris Messina, (Official Rep), commented on June 12, 2009 06:22

That sounds reasonable. It's similar to what iPhone apps that use OAuth do with custom schemes.
Remove Inappropriate?
Delete or Edit for 15 minutes

Ken Seto replied on June 23, 2009 06:19

I'd really like to see a better user experience for iPhone apps that need to use OAuth (for Twitter API for example). Kicking the user to a browser and having to come back to the app is a TERRIBLE user experience no matter how you spin it.

I’m frustrated

Add a comment

Company participation

The mood in here

Products & Services

This topic is tagged

Related topics in OAuth

How does OAuth work with non-browser based Consumer applications?