Oauth authorisation  wrapper for Outsystems

Oauth authorisation  wrapper for Outsystems

  
Has anyone successfully implemented Oauth as a Service Provider?

"OAuth is an open protocol that allows users to share their private resources (e.g. photos, videos, contact lists) stored on one site with another site without having to hand out their username and password."


Service providers supporting Oauth include, Google, MySpace, Twitter, facebook, GetSatisifcation, Evernote, Photobucket, etc...


C# library: http://code.google.com/p/oauth-dot-net/downloads/list

Reference:
http://oauth.net/
http://oauth.net/code
http://hueniverse.com/oauth/
http://en.wikipedia.org/wiki/OAuth
<h2 id="AuthProcess">Google'sOAuth authorization process for web apps</h2>

OAuth authorization for web applications involves a sequence of interactions between your web application, Google services, and the end user. This diagram illustrates the sequence:


<p align="center"><img src="http://code.google.com/apis/accounts/images/OAuthDiagram.png" alt="Authentication process" />

  1. The web application contacts the Google Authorization service, asking for a request token for one or more Google service.
  2. Google responds with an unauthorized request token.
  3. The web application directs the end user to a Google authorization page, referencing the request token.
  4. On the Google authorization page, the user is prompted to log into their account (for verification) and then either grant or deny limited access to their Google service data by the web application.
  5. The user decides whether to grant or deny access to the web application. If the user denies access, they are directed to a Google page and not back to the web application.
  6. If the user grants access, the Authorization service redirects the user back to a page designated with the web application was registered with Google. The redirect includes the now authorized request token.
  7. The web application sends a request to the Google Authorization service to exchange the authorized request token for an access token.
  8. Google verifies the request and returns a valid access token.
  9. The web application sends a request to the Google service in question. The request is signed and includes the access token.
  10. If the Google service recognizes the token, it supplies the requested data.


Reference: http://code.google.com/apis/accounts/docs/OAuth.html
Hello Robert,

I'm having some trouble with OAuth implementation, if you can help me with some tips I would be grateful.

Edgar
Hello Edgar

What are you having trouble with?
So to give some context to the problem, I need OAuth to access read/write to LinkdedIn however the implementation of the code that I was seeing on the web (in C# / ASP.NET) put me some problems, I have had some problems with the implementation of the code with Integration Studio because of the incompatibility of libraries that work in the context of C # and ASP.

The Code I have used as a reference on this page is:
http://scatteredcode.wordpress.com/2011/12/01/dotnetopenauth-oauth-and-mvc-for-dummies/


I'm thinking of using functions similar to C# that allow me to do the same as those of ASP.NET however I may be approaching the problem incorrectly?
@Edgar, I got your message; speak to you on skype.
I know this is old. But has there been any progress on this? Or has this been completed at all?

I am currently trying to connect one of our espaces to an Oauth service provider.
Hi Walter,

There is a Twitter connector in the forge that uses oauth: http://www.outsystems.com/forge/269/Twitter+(Twitter+API)/

You can look how it is done and adapt it to your needs.


Regards,
João Rosado
Hi guys,

I just published a component to include Google oAuth 2.0 in your applications.

Check it out here: http://www.outsystems.com/forge/component/446/google-authentication/

Cheers,
André
Hi Robert,

I just configured Google Authentication and was now able to integrate it with OutSystems. One of the feature I will configure is that when I verify the user (match the email of a user record versus gmail login), I will have to login him to the application.

Any thoughts on how you are going to implement this?

Regards,
JC