Archive for October, 2008

Womens Viagra

Wednesday, October 22nd, 2008

Womens viagra I found the existing protocol flow diagram in the current OAuth spec..

Womens viagra OAuth Core 1.0
http://oauth.net/core/1.0/

Womens viagra ..somewhat hard to follow. Womens viagra So I concocted three separate new ones using the so-called “swimlane” technique that I’m used to. Womens viagra

Womens viagra I posted these to the OAuth list a while back, womens viagra and a few folks reposted them to their blogs, womens viagra but no one has yet piped up to say I got anything wrong. Womens viagra But YMMV, womens viagra there might be bugs in here. Womens viagra

Womens viagra FWIW, womens viagra I’ve posted them below in case others find them useful. Womens viagra Also, womens viagra I have them in a single file..

Womens viagra http://identitymeme.org/doc/draft-hodges-oauth-05-figures.txt

Womens viagra ..also featuring OpenID and SAML Web Browser SSO Profile diagrams for comparison purposes. Womens viagra Note that in all things protocol, womens viagra definitions of terms are essential in order to be able to effectively communicate and reason about protocols, womens viagra so I’ve included key definitions from the OAuth spec in the file. Womens viagra

Womens viagra NOTE: fixed-pitch font required for viewing. Womens viagra Also, womens viagra wordpress is obviously messing up the diagrams below, womens viagra and they consequently look sorta lame, womens viagra here on the blog. Womens viagra This site presently uses an old wordpress install, womens viagra maybe this will help motivate me to upgrade it. Womens viagra In the meantime, womens viagra check out the file linked-to above for the best viewing experience 😉

Womens viagra Fig 1: out-of-band consumer setup/config

                                           photos.example.net
                                             +----------+
                                             |          |
                                             | OAuth    |
                                             | service  |
                  printer.example.com        | provider |
                      +---------+            |          |
                      |developer|            |  Sys     |
                      |   of    |            |  Admin   |
                      | OAuth   |            |          |
                      |consumer |            |          |
                      |         |            |   [SP]   |
                      +----+----+            +----+-----+
                           |                      | 
                           | obtain Consumer Key  |
                           | and Consumer Secret  |
                           | [details unspec'd, womens viagra   |
                           |  performed out-of-   |
                           |  band.]              |
                           |--------------------->| 
                           |< ---------------------|
                           |                      | 
                           |                      |

Womens viagra Fig 2: "Web-based consumer"

The "consumer" is a website or other application that accesses 
the Service Provider on behalf of the wielder (user) of the user agent 
(UA is typically a browser, womens viagra but could be some other app). Womens viagra 

Steps 1.n. Womens viagra  "Obtain Unauthorized Request Token"
      2.n. Womens viagra  "User Authorizes Request Token"
      3.n. Womens viagra  "Exchange Request Token for Access token"
      4.n. Womens viagra  UA accessing protected resources at SP
      
      

                                           photos.example.net
                                             +----------+
                                             |          |
                                             | OAuth    |
                   printer.example.com       | Service  |
                       +--------+            | Provider |
                       |        |            |          |
                       | OAuth  |            |[protected|
                       |Consumer|            |resources]|
 +----+                |        |            |          |
 | UA |                |  [RP]  |            |   [SP]   |
 +-+--+                +---+----+            +----+-----+
   |                       |                      |
   | 1.0. Womens viagra User Agent inter-|                      |
   | acts with Consumer    |                      |
   | site [optional]       |                      |
   |< --------------------->|                      |
   |                       |                      |
   |                       |                      |
   |                       |                      |
   | 1.1. Womens viagra UA informs/directs                      |
   | Consumer to do something                     |
   | with a resource (e.g. Womens viagra |                      |
   | a photo) at SP        |                      |
   |---------------------->|                      |
   |                       |                      |
   |                       |                      |
   |                       |                      |
   |                       | 1.2. Womens viagra Consumer attempts
   |                       | accessing photo at SP|
   |                       |--------------------->|
   |                       |                      |
   |                       |                      |
   |                       | 1.3. Womens viagra SP replies with |
   |                       | a HTTP 401 containing|
   |                       | a "OAuth" www-authn  |
   |                       | header field         |
   |                       |< ---------------------|
   |                       |                      |
   |                       |                      |
   |                       | 1.4. Womens viagra Consumer replies|
   |                       | with a request for   |
   |                       | "unauthorized Request|
   |                       | Token" (uRT) via POST|
   |                       | to SP's "request token
   |                       | URL"                 |
   |                       |--------------------->|
   |                       |                      |
   |                       |                      |
   |                       | 1.5. Womens viagra SP issues uRT & |
   |                       | token secret to      |
   |                       | Consumer. Womens viagra            |
   |                       |< ---------------------|
   |                       |                      |
   |                       |                      |
   |                       |                      |
   | 2.0. Womens viagra Consumer redirects                      |
   | UA to SP "User Author-|                      |
   | ization URL" including|                      |
   | the uRT. Womens viagra              |                      |
 +<- - - - - - - - - - - - |                      |
 . Womens viagra | (indirected via UA)   |                      |
 . Womens viagra |                       |                      |
 +-------------------------+--------------------->|
   |                       |                      |
   |                       |                      |
   |                       |                      |
   |                       |                      |
   | 2.2. Womens viagra User authenticates with the Service     |
   | Provider (optional, womens viagra methods vary, womens viagra realization|
   | is out of scope)                             |
   |< ============================================>|
   | 2.3. Womens viagra User grants or declines permission      |
   | for the Service Provider allow Consumer      |
   | access to the resource (e.g. Womens viagra photo). Womens viagra         |
   |                       |                      |
   |                       |                      |
   |                       |                      |
   |                       |                      |
   | 2.4. Womens viagra If permision granted, womens viagra UA redirected back|
   | to Consumer's "Callback URL", womens viagra conveying the  |
   | uRT. Womens viagra                  |                      |
 +< - - - - - - - - - - - - - - - - - - - - - - - -|
 . Womens viagra | (indirected via UA)   |                      |
 . Womens viagra |                       |                      |
 . Womens viagra |                       |                      |
 +------------------------>|                      |
   |                       |                      |
   |                       |                      |
   |                       |3.0. Womens viagra Consumer requests|
   |                       |Access token, womens viagra supplies|
   |                       |uRT. Womens viagra                  |
   |                       |--------------------->|
   |                       |                      |
   |                       |                      |
   |                       |                      |
   |                       |3.1. Womens viagra SP grants Access |
   |                       | Token. Womens viagra               |
   |                       |< ---------------------|
   |                       |                      |
   |                       |                      |
   |                       |4.x. Womens viagra Consumer uses the|
   |                       |Access Token, womens viagra Access  |
   |                       |Token Secret, womens viagra Consumer|
   |                       |Key, womens viagra and Consumer Secret
   |                       |to make authenticated |
   |                       |request(s) to the Service
   |                       |Provider. Womens viagra             |
   |                       |=====================>|
   |                       |           . Womens viagra          |
   |                       |           . Womens viagra          |
   |                       |           . Womens viagra          |
   |                       |                      |



Womens viagra Fig 3: “desktop-based consumer”


this is case where user is wielding some app that is both a UA and a Consumer.


                                             +----------+
                                             |          |
                                             | OAuth    |
                                             | service  |
 +--------+                                  | provider |
 |        |                                  |          |
 |Desktop-|                                  |[protected|
 |based   |                                  |resources]|
 |Consumer|                                  |          |
 |        |                                  |          |
 | UA     |                                  |   [SP]   |
 +-+------+                                  +----+-----+
   |                                              |
   | 1. Womens viagra Consumer requests "unauthorized Request   |
   | Token (uRT)" with POST to SP's "request token"
   | URL. Womens viagra                                         |
   |--------------------------------------------->|
   |                                              |
   |                                              |
   | 1.1. Womens viagra SP issues uRT and Token Secret to       |
   | consumer. Womens viagra                                    |
   |< ---------------------------------------------|
   |                                              |
   |                                              |
   |                                              |
   | 1.2. Womens viagra User authenticates with the Service     |
   | Provider (optional, womens viagra methods vary, womens viagra realization|
   | is out of scope)                             |
   |<============================================>|
   | 3. Womens viagra User grants or declines permission        |
   | for the Service Provider to issue Access     |
   | Token. Womens viagra                                       |
   |                                              |
   |                                              |
   |                                              |
   |                                              |
   | 4. Womens viagra Service Provider authorizes the uRT to be |
   | exchanged for an Access Token and secret. Womens viagra    |
   |< ---------------------------------------------|
   |                                              |
   |                                              |
   |                                              |
   | 5. Womens viagra Consumer exchanges the uRT and secret     |
   | for an Access Token and Secret. Womens viagra              |
   |--------------------------------------------->|
   |< ---------------------------------------------|
   |                                              |
   |                                              |
   |                                              |
   | 6. Womens viagra Consumer uses the Access Token, womens viagra Access    |
   | Secret, womens viagra Consumer Key, womens viagra and Consumer Secret    |
   | to make authenticated request(s) to the Service
   | Provider                                     |
   |<============================================>|
   |                      . Womens viagra                       |
   |                      . Womens viagra                       |
   |                      . Womens viagra                       |
   |                      . Womens viagra                       |
   |                      . Womens viagra                       |
   |                      . Womens viagra                       |
   |                                              |

Average Rating: 4.4 out of 5 based on 214 user reviews.