This repository is private.
All pages are served over SSL and all pushing and pulling is done over SSH.
No one may fork, clone, or view it unless they are added as a member.
Every repository with this icon (
) is private.
Every repository with this icon (
This repository is public.
Anyone may fork, clone, or view it.
Every repository with this icon (
) is public.
Every repository with this icon (
danski (author)
Thu Jan 15 03:52:11 -0800 2009
commit 0c54c8446defb1512d4163626d71f3d5d92fcc6f
tree f829e9038411a1bf6fa4888ffc106b88c9a54eab
parent cfc7efdafb40c394dff444d6fe3ee35bd39cee64
tree f829e9038411a1bf6fa4888ffc106b88c9a54eab
parent cfc7efdafb40c394dff444d6fe3ee35bd39cee64
ooh-auth /
| name | age | message | |
|---|---|---|---|
| |
.gitignore | ||
| |
LICENSE | ||
| |
README | ||
| |
Rakefile | ||
| |
TODO | ||
| |
app/ | ||
| |
config/ | ||
| |
doc/ | ||
| |
lib/ | ||
| |
mocks/ | ||
| |
ooh-auth.gemspec | ||
| |
public/ | ||
| |
readme.markdown | ||
| |
spec/ | ||
| |
stubs/ |
readme.markdown
There's Auth, there's OAuth, and there's OohAuth.
OohAuth extends merb-auth-more with a functionally-complete approach to OAuth, turning your merb-auth applications into full OAuth providers.
OAuth at a glance:
- Your users won't have to give their names and passwords to client applications
- Your users can revoke or limit access from a particular client at any time
- Your users do not have to give client applications everything they need to steal their account
- Your developer community can authenticate using a solid authentication schema endorsed by industry giants
- Resilient to both man-in-the-middle and signature replay attacks.
OohAuth gives you:
- Integration with merb-auth and your application's own User model
- RESTful creation of API keys for client apps
- RESTful creation of request and access tokens to allow client apps to authenticate on behalf of users
- merb-auth strategies for both web-based and non web-based API authentication.
It depends on:
- merb-slices
- merb-action-args
- merb-auth-core
- merb-auth-more
- nokogiri (tests only)
- ruby-hmac
- Erb OR Haml (Haml support thanks to Pius)
- datamapper (we need your help to become ORM-agnostic)
You should read:
- Why we wrote it
- OohAuth on github
- OAuth 1.0 specification a hefty spec document containing instructions for authenticating with OAuth apps and more.
- securing.markdown, your guide to properly securing an application using OohAuth.
- OohAuth's bugtracker on Tails








