Please sign in to comment.
- Loading branch information...
|@@ -1 +1,11 @@|
|-# OAuth Explained|
|+# OAuth Explained|
|+OAuth 1.0 (and later 2.0) was created to give a standard way to access data as an **authentified** user from one service (or API) to another without giving away your password to the other service. Some service would require you to give them your username and password to import data from a third pary service. One exemple would be importing your contacts email addresses from your GMail to find "friends" on another web service. This is aptly called the [password anti-pattern] (http://adactio.com/journal/1357/), you can read a bit more on the rationale of why OAuth was invented. One metaphor commonly used to explain OAUth is the _valet key_: you can give limited access to your car with this key, but not complete access.|
|+* [Getting started with OAuth 2.0 book by Ryan Boyd] (http://shop.oreilly.com/product/0636920021810.do)|