![[info]](http://l-stat.livejournal.com/img/userinfo.gif){kind=small}
As you probably know we launched Browser-Based Authentication. What this means is that users can grant third-party web-based applications access to their Yahoo! data. (Actually, this could be used for non web-based apps too.) For a more detailed explanation, go here.
Anyway, I’ll explain how this works using the Ruby interface I just wrote and (sorta) tested:
- Registering your web application: First off, you need to register your web application. After registration you’ll get your appid and shared secret.
- Logging-in users:
obj = YBBAuth.new(appid, secret) obj.get_auth_url('')Once you get the auth URL, direct the user there. Now the user is informed that your amazing web application is asking for permissions (read, write or both) and whether he wishes to grant permission, etc. Once the user grants permission, Yahoo! will redirect the user to your application (you would’ve submitted the URL when registering for an appid). - Getting user credentials: When Yahoo! redirects the user, it adds a
tokenparameter to the URL. You need to extract this token in order to get user credentials:obj.get_access_credentials(token)
- Making an authenticated request: Now you can make authenticated GET/POST requests:
obj.ws_auth_get_request('http://photos.yahooapis.com/V3.0/listAlbums')The above snippet makes use of the Yahoo! Photos API.
The interface isn’t complete or well-tested (I have a flight to catch in a few hours so I need to leave in a bit). I’ll work on it in a day or two.
2006-10-01 04:51 pm (UTC)
2006-10-02 05:37 am (UTC)
The Yahoo! login only happens on http://login.yahoo.com/ so the sign-in seal is still available and users should look out for it. The grant of access also happens through http://login.yahoo.com/
When you're granting access to a third party application, the landing page tells you the domain name of the third party application and the Yahoo! application to which access is being requested, so you know exactly what data you're sharing.
2006-10-02 05:47 am (UTC)
2006-10-02 05:54 am (UTC)
2006-10-03 10:02 pm (UTC)
2007-06-21 09:44 am (UTC)
Jason
2007-08-04 09:29 pm (UTC)
Aston
hosting reviews.
Yahoo comes back hoho
2007-03-18 01:53 pm (UTC)
BBAuth fixes that problem when it comes to accessing data locked up at Yahoo. Using the tools Yahoo provides, non-Yahoo applications can request a user to sign in to Yahoo and give permission for Yahoo user data to be sent to the non-Yahoo application. To two test applications had been created. The first shows how it can be used to allow sign in via Yahoo credentials, and the second shows how you can access Yahoo photos data outside of Yahoo.
2006-10-02 01:59 am (UTC)
if I click yes, xyz.com has permission to access my data for two weeks.
I'd be more comfortable with "when your browser closes" or something.
And I don't see how this is better than Google Auth anyway. Something I'm missing?
2006-10-02 05:50 am (UTC)
... provided that you don't sign out of Yahoo! Network in the mean time. If you do, the permission goes away too [will try to get the exact details] and you need to re-authenticate all over again.
And I don't see how this is better than Google Auth anyway
What's your point behind this question? If it is to suggest that Google somehow invented this kind of system, you're wrong. Yahoo! has been using a similar authentication mechanism for "partner sites" for ages. Even OpenID predates Google Auth. It's merely a question of if and when someone chooses to open up authentication to unknown third parties.
2006-10-02 07:14 am (UTC)
2006-10-03 09:46 pm (UTC)
2006-10-04 05:11 am (UTC)
As for the google question, I was thinking of something else while I typed that, so there isn't a point I'm trying to sell. It was more like a note to self.
2008-07-11 01:47 am (UTC)
ruby books in Bangalore
(Anonymous)
2006-10-09 08:13 am (UTC)
i have searched in many places in bangalore like sapna book,gangaram,market but i have not found i will be very thankful to you.
Re: ruby books in Bangalore
(Anonymous)
2007-11-25 08:59 pm (UTC)
Re: ruby books in Bangalore
2007-12-05 12:27 am (UTC)
2007-11-25 09:09 pm (UTC)
hope they know ruby as well, gave them link to that topic
blog
2007-12-07 07:27 pm (UTC)
Nice posts, enjoyed reading it
2007-12-23 09:05 am (UTC)
I read your blog posts with a lot of interest. I think you may like to visit my site software architecture site! And if you want, I would love to swap links with you (leave a comment on my blog if you would!).
-Des
My Software Architecture Blog
http://architecture.wpbloghost.net/
What Is Proactol
(Anonymous)
2008-03-07 02:04 am (UTC)
So please keep up the great work. Greetings.
Cool quote
(Anonymous)
2008-04-30 02:05 am (UTC)
What we need in this country, instead of Daylight Savings Time, which nobody
really understands anyway, is a new concept called Weekday Morning Time,
whereby at 7 a.m. every weekday we go into a space-launch-style "hold" for
two to three hours, during which it just remains 7 a.m. This way we could
all wake up via a civilized gradual process of stretching and belching and
scratching, and it would still be only 7 a.m. when we were ready to actually
emerge from bed.
-- Dave Barry, "$#$%#^%!^%&@%@!"
----------------------------------------
http://irwindanielol.easyjournal.com