I want to use google Oauth with django, is there a price? This is for a personal n portfolio use.
Related
I'm trying to understand if the Quickbooks API provides the ability to retrieve data of a users' clients and THEIR associated data.
The scenario would be as follows: API works with multiple accounting firms and the firms have clients with Journal Entries, etc etc.
In QBO Accounting, you can access all of your clients and do what you need.
Based on everything I've seen in the developer documentation, it seems that the APIs simply allow me to pull my own QBO data, not data of any clients that I may have access to. Am I understanding this correctly?
Answering my own question, yes you can access your company's client data. This happens through the oauth2 flow. Thanks!
Assume my company is offering 2 applications, say Mail and Calendar.
Both applications are using OAuth 2 to secure access.
Now Calendar wants to access data from Mail. If those were applications from two different vendors it would be natural for Calendar to ask the user to authorize it's access to Mail etc.
But since the applications come from the same source I'd like them to be able to share data without the user having to explicitly give permissions.
Or to put it differently: I have ID/Access/Refresh tokens for Calendar. How can I exchange them for an Access Token for Mail without bothering the user?
How can this be done in OAuth 2? I control both the applications and the Identity Provider.
The only solution that comes to my mind is for both Mail and Calendar to be the same Application, but that doesn't seem right (and has other issues, e.g. if you want to restrict someone's access to one of them). I could also implement special access outside of OAuth 2 but that is even worse.
A real world example would be Gmail and Google Calendar. They both present OAuth 2 interface to the outside world, but you don't have to allow them to talk to each other.
PS. References to white papers or cases studies would be appreciated
SEPARATED CLIENTS
By default in OAuth you would register multiple clients which get their own tokens. You would then use Single Sign On when navigating between them the first time:
Client ID: app1
Scope: openid scope1
Redirect URI: https://app1.mycompany.com
Client ID: app2
Scope: openid scope2
Redirect URI: https://app2.mycompany.com
If user consent is involved the user has more choice this way of how they grant access to their personal assets.
COMBINED CLIENT
You could potentially combine these into a single entry like this. Note that there is usually a hosting prerequisite of a single base domain in order for token / cookie storage to work:
Client ID: combinedapp
Scope: openid scope1 scope2
Redirect URIs: [https://app1.mycompany.com https://app2.mycompany.com]
PROS AND CONS
The first option is cleanest most of the time, since you avoid tokens with access to too much data. The second option can make sense for related micro-UIs that are really a single app with the same permissions.
APIs AND SCOPES
To share data across apps, companies build API endpoints. You can then have multiple apps that each use scopes representing multiple business areas. See the Scope Best Practices article as a starting point for designing authorization. Eg user logs into calendar app with scopes openid calendar mail - and therefore can get mail data also.
I'm trying to access Google spreadsheets using gdata-python-2.0.17 library. In every tutorial, programmaticLogin(uname,pwd) is used but I feel it is not a good practice. I'm trying to overcome this by using OAuth 2.0 authentication(oauth2client.client).
I've managed up to granting access to a Google account by getting user consent.
I'm not sure whether the standard gdata.spreadsheet.service.SpreadsheetsService() can be used in this scenario.
According to this, it is not possible/easy to combine OAuth 2.0 and gdata-python library.
It's highly appreciated if someone know how to handle this with the said APIs or using later versions of Google API which can be used.
Thanks
I am looking for a Rails API for a federated id service or cloud sso. I've been playing around with the idea. Of CAS and omniauth but for an enterprise-ish app it would be better if it could auth could be unified across all applications a small biz might use.
There's many different options for a Federated ID using Rails. Gatekeeper is a very good one that I've heard about and most people I know talk about.
Another one that is very young compared to other is oPro which basically simulates OAuth 2 on your Rails App you can find it here oPro.
In my opinion and experience working with federated IDs in enterprise projects I'd suggest looking into implementing it yourself which is just a matter of following the documentation of whichever one you choose.
I want to parse google and yandex search results for my little website analyzer utility.
so i should send hundreds requests per minute. What is good practice for this issue?
Is google search api a good way?
The Google Search API may not be used for bots. Google will block your utility if you request too much searches.
http://code.google.com/apis/ajaxsearch/terms.html
You agree that when using the Service, You will not, and will not permit users or other third parties to:
Use any robot, spider, site search/retrieval application, or other device to retrieve or index any portion of Google Search Results or to collect information about users for any unauthorized purpose;