With Vaadin 8 being released and so much of the frameworkâs API changing, I wonder:
Is OAuth 2 still the modern way to access 3rd-party authentication services such as "Sign-in" with Google, Facebook, Microsoft, etc. ?
If so, does Vaadin 8 support such authentication services?
I am looking only for authenticating users logging into my Vaadin 8 web app, no authorization needed.
This is not exactly Vaadin or Vaadin 8 related question, but I gave my two cents: OAuth 2's status haven't changed because of Vaadin 8 release, and Vaadin 7 and Vaadin 8 allow both OAuth 2 integration - as I know there isn't official support, but this shouldn't prevent you using OAuth 2 with Vaadin.
Related
We've migrated to the latest LinkedIn IOS SDK which only supports single sign-on (SSO) authentication, in conjunction with the official LinkedIn mobile application. Our app works really well with this, however Apple will not approve our latest version, because it requires the LinkedIn app to be installed for the authentication to work.
We need a solution which handles the scenario when the LinkedIn app is not present, to use web authentication, however LinkedIn are very specific stating Mobile SDK-enabled applications require the official LinkedIn iOS app to be installed on the device to function properly" https://developer.linkedin.com/docs/ios-sdk - The Mobile SDK was released in July, so presume we are not alone in having our app rejected by Apple approvals.
Could you test for the presence of the linked-in app:
if it is not there: implement OAuth2 directly through your app
if it is there: use it or your OAuth2 implementation (which you'd probably err on the side of using their app for the link-ability between any features of the app you may need in yours).
Thereby avoiding the REQUIREMENT to have the app installed.
Researching for this I did find:
Mobile vs server-side access tokens
Presently, there is no mechanism available to exchange them. If you
require tokens that can be used in both the mobile and server-side
environment, you will need to implement a traditional OAuth 2.0
solution within your iOS environment to acquire tokens that can be
leveraged in both situations.
from: https://developer.linkedin.com/docs/ios-sdk-auth
which suggests that authentication away from the app is supported.
Pleased to confirm that the solution kindly suggested by Madivad of using the new LinkedIn SDK if the LinkedIn app is installed and when it's not reverting to traditional OAuth 2.0 works fine. Apple are also back on our Christmas card list as they approved this latest version today within 40 minutes of submission:) Thanks Madivad for helping out with this.
Does TrueVault have oAuth built into it? Can I show a button on my webapp that says "Login via TrueVault"? I'm trying to add third party auth to Parse.
https://parse.com/tutorials/adding-third-party-authentication-to-your-web-app
OAuth for TrueVault is currently in closed beta. We will be announcing its release soon. Stay tuned!
Per this announcement by Google this week: http://googleenterprise.blogspot.com/2013/11/third-party-apps-now-easier-to-find-and.html Google now supports OAuth 2 for App Marketplace apps, but the examples are all Javascript, we currently have a server side flow and I am wondering if this will still be supported and if there are any examples yet available?
Thanks!
The new Google Apps Marketplace experience fully supports using Java for your server-side authorization flow. You can use the Google APIs Client Library for Java to make authenticated calls like you would for any other Google APIs integration.
We're actively working on improving our documentation so any feedback would be appreciated.
Is ShareKit going to stop working for Facebook sharing come 11th October 2011?
As I understand it the current version (0.2.1gm1) of ShareKit uses the REST api, which is based on the old iPhone SDK (facebook-iphone-sdk) and according to today's blog:
On October 11th, apps using the old JavaScript Library (FeatureLoader.js) or the old iPhone SDK (facebook-iphone-sdk) for authentication will no longer be able to authenticate users until these apps switch to OAuth 2.0
Or does it already use OAuth 2.0, so no changes are needed?
Just a little confused as to whether I need to update my apps in advance or not - thanks!
The new Facebook graph / OAuth seems to be only for iFrame / connect applications? Is it possible to use the OAuth system for FBML applications?
FBML will probably vanish in 2011. Please check facebook developer roadmap and concentrate on developing iframe based applications (and later on also iframe based tabs)