OAuth 2.0 implementation

Roy Smith roy at panix.com
Tue Mar 27 05:57:13 CEST 2012


In article <878vimhfdp.fsf at benfinney.id.au>,
 Ben Finney <ben+python at benfinney.id.au> wrote:

> Roy Smith <roy at panix.com> writes:
> 
> > In article <87haxahh51.fsf at benfinney.id.au>,
> >  Ben Finney <ben+python at benfinney.id.au> wrote:
> > > As someone who uses OpenID, what can I read about why OAuth is better?
> >
> > OpenID is for people who worry about things like how OpenID is different 
> > from OAuth.  Oauth is for people who have no idea what OAuth is and just 
> > want to be able to log into web sites using their Facebook account.
> 
> So, if I want to be free to choose an identity provider I trust, and
> it's not Facebook or Google or Twitter or other privacy-hostile
> services, how does OAuth help me do that?

It doesn't.  Well, in theory, it could, but in practice everybody's 
OAuth implementation is different enough that they don't interoperate.



More information about the Python-list mailing list