Someone over here might know the answer to this!
-
What is logic of OAuth tokens? How can token know what privs user is having on the website?
where can i find detail on how to impelment oAuth on my website.
my website have 3 sections.- Browser only - no longing required.
- Buy & Sell - longing required.
- change price - longing and authority required
- Browser only - no longing required.
-
So in order to use OAuth you need a yearning desire? Is OAuth that bad?
-
Sorry I can't help you.
I know that I've *tried* to understand OAuth, really I've tried, but it won't fit into my brain.
-
@blakeyrat said:
Sorry I can't help you.
I know that I've *tried* to understand OAuth, really I've tried, but it won't fit into my brain.
Am sure it will fit in my brain, but I need someone to draw one picture really. Not the silly picture you get by googleing. Draw a real picture that will make some sense.
-
OAuth does not provide authorisation it only does the Authentication* part of AAA, so you have to do the other part of AAA (authorisation and auditing) yourself.
- as long as you accept some source on the internet that probably never has seen the person or let alone verified the identity as a legit source for Authentication
