Most of those concerns are valid. Daniel Friesnen has managed to convince
me that OAuth is absolutely horrible, and that we will probably have to
make our own authentication framework.
*-- *
*Tyler Romeo*
Stevens Institute of Technology, Class of 2015
Major in Computer Science
www.whizkidztech.com | tylerromeo(a)gmail.com
On Fri, Mar 22, 2013 at 11:59 AM, Yuri Astrakhan
<yastrakhan(a)wikimedia.org>wrote;wrote:
There was a discussion recently about OAuth, and I
just saw this blog
post<
http://insanecoding.blogspot.com/2013/03/oauth-great-way-to-cripple-your-ap…
(posted
on slashdot<
http://tech.slashdot.org/story/13/03/22/1439235/a-truckload-of-oauth-issues…
)
with some heavy criticisms. I am not an
expert in OAuth and do not yet have
a pro/against position, this is more of an FYI for those interested.
--yurik
_______________________________________________
Wikitech-l mailing list
Wikitech-l(a)lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/wikitech-l