Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

how can I separate the OAuth Authorization server and Resource server #128

huangye177 opened this Issue Aug 28, 2012 · 0 comments


None yet
1 participant

Dear all,

I am running the oauth-plugin pretty well in my OAuth server.

Here comes up a question. Now my application is doing the authentication (via OpenID) and authorization (via OAuth) for the incoming requests from remote consumer servers, and then also supplies the resource data (json, xml, picture, etc) if the access_token is valid.

I'd like to split the functions, so that my new "auth-application" will only handle user authentication and resource request authorization (request a OAuth access_token). After that, I use a new "resource-application" to response the detailed resource requests (use of the obtained access_token).

Has anyone tried that before, how should I proceed the re-factoring? My current approach is quite similar with the following tutorial:

Thanks in advance!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment