Someone over here might know the answer to this!



  • What is logic of OAuth tokens? How can token know what privs user is having on the website?


    where can i find detail on how to impelment oAuth on my website.


    my website have 3 sections.

    1. Browser only - no longing required.
    2. Buy & Sell - longing required.
    3. change price - longing and authority required


  • So in order to use OAuth you need a yearning desire? Is OAuth that bad?



  • Sorry I can't help you.

    I know that I've *tried* to understand OAuth, really I've tried, but it won't fit into my brain.



  • @blakeyrat said:

    Sorry I can't help you.

    I know that I've *tried* to understand OAuth, really I've tried, but it won't fit into my brain.

    Am sure it will fit in my brain, but I need someone to draw one picture really. Not the silly picture you get by googleing. Draw a real picture that will make some sense.



  • OAuth does not provide authorisation it only does the Authentication* part of AAA, so you have to do the other part of AAA (authorisation and auditing) yourself.

    • as long as you accept some source on the internet that probably never has seen the person or let alone verified the identity as a legit source for Authentication

Log in to reply
 

Looks like your connection to What the Daily WTF? was lost, please wait while we try to reconnect.