OAuth and REST web services

Post on 11-Nov-2014

20.278 views 2 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

description

OAuth and REST web services Portland Java User Group Portland, Oregon March 17 2009

Transcript of OAuth and REST web services

Sean SullivanPortland Java User Group

March 17, 2009

OAuth and REST web services

http://en.wikipedia.org/wiki/Representational_State_Transfer

Representational state transfer (REST) is a style of software architecture for distributed hypermedia systems such as the World Wide Web. As such, it is not strictly a method for building "web services." The terms "representational state transfer" and "REST" were introduced in 2000 in the doctoral dissertation of Roy Fielding, one of the principal authors of the Hypertext Transfer Protocol (HTTP) specification.

http://roy.gbiv.com/untangled/2008/no-rest-in-cmis
http://roy.gbiv.com/untangled/2008/no-rest-in-cmis

http://www.ics.uci.edu/~fielding/pubs/dissertation/top.htm

http://www.ics.uci.edu/~fielding/pubs/dissertation/top.htm
http://www.ics.uci.edu/~fielding/pubs/dissertation/top.htm

http://www.ics.uci.edu/~fielding/pubs/dissertation/top.htm

http://www.ics.uci.edu/~fielding/pubs/dissertation/top.htm
http://www.ics.uci.edu/~fielding/pubs/dissertation/top.htm

REST web service API’s

http://roy.gbiv.com/untangled/2008/no-rest-in-cmis

“REST is an architectural style, not a protocol”

Roy FieldingSeptember 2008

REST +

• Jersey

• JBoss RESTEasy

• Apache CXF

• Restlet

• Spring 3.0

• Restlet API

• JAX-RS API

• Restlet client API

• org.restlet.Application

• org.restlet.resource.Resource

• org.restlet.Restlet

• org.restlet.representation.Representation

• org.restlet.representation.Variant

• org.restlet.ext.servlet.ServerServlet

JAX-RS

• Java API for RESTful web services

• JSR-311

• https://jsr311.dev.java.net

https://jsr311.dev.java.net
https://jsr311.dev.java.net

Restlet configuration

“As XML has been frequently overused as an alternative programming language, in the Restlet framework we are very careful about this. We think that any configuration that must be done by an application developer should be done in Java.”

http://www.restlet.org/documentation/1.1/faq

http://www.restlet.org/documentation/1.1/faq
http://www.restlet.org/documentation/1.1/faq

“An open protocol to allow secure API authorization in a simple and standard method from desktop and web applications”

http://oauth.net

http://oauth.net
http://oauth.net

• use OAuth to access protected data

• your application needs to obtain an access token from the service provider

• service provider will issue access token after the user grants permission

http://twitter.com/oauth_clients

http://twitter.com/oauth_client
http://twitter.com/oauth_client

http://wiki.oauth.net/ServiceProviders

http://wiki.oauth.net/ServiceProviders
http://wiki.oauth.net/ServiceProviders

http://code.google.com/p/oauth

+

http://code.google.com/p/oauth
http://code.google.com/p/oauth

• net.oauth.OAuthAccessor

• net.oauth.OAuthConsumer

• net.oauth.OAuthMessage

• net.oauth.client.OAuthClient

• net.oauth.client.httpclient4.HttpClient4

+

XML response

HTTP request

Open source projects

code.google.com/p/jfireeagle

code.google.com/p/jpoco

code.google.com/p/meetup-java-client

code.google.com/p/friendfeed-java-api

code.google.com/p/twilio-java-client

Thank you

Top related

InTEGRATIO n Chatter REST API Cheat Sheetres.cloudinary.com/...chatter_rest_api_cheatsheet.pdf · Chatter REST API uses OAuth 2.0 for authentication. The return from a successful
 Documents
Building Secure Composable Services with Oauth and Odata
 Data & Analytics
Advanced Authentication - Administration...Supports ADFS 3 and 4, OAuth 2.0, and SAML 2.0: Advanced Authentication integrates with Active Directory Federation Services, OAuth 2.0,
 Documents
[MS-ADFSOAL]: Active Directory Federation Services …... · Active Directory Federation Services OAuth Authorization Code ... Active Directory Federation Services OAuth ... Federation
 Documents
Understanding Oracle Web Services Manager€¦ · 2.18 Understanding OAuth 2.0 for REST and SOAP Services and Clients 2-60 2.19 Understanding REST APIs for Managing Credentials and
 Documents
Using OpenID/OAuth to access  Federated Data Services 
 Documents
OAuth2 based Web Services Access Authentication Oracle … · 2019-08-14 · 2.1 Understanding OAuth Services Oracle Access Management (OAM) implemented the OAuth core 2.0 specifications
 Documents
The Essential OAuth Primer: Understanding OAuth …docs.media.bitpipe.com/.../item_426600/The-Essentials-of-OAuth.pdfThe Essential OAuth Primer: Understanding OAuth for Securing Cloud
 Documents
OAuth and Rest
 Software
OAuth 2.0 Token Exchange: An STS for the REST of Us
 Technology
Composing REST Services
 Technology
Ed-Fi® REST API Design Guidelines OAuth..... 18 Authorization ... Ed-Fi REST API Design Guidelines
 Documents
REST API Guide – OpenManage Essentials · 2018-01-25 · Two-legged OAuth-based authentication The 2-legged OAuth mechanism is popular in many public REST APIs in the industry.
 Documents
Building and using web services with OAuth
 Education
REST -Web services
 Technology
ISAN REST Web Services API · ISAN REST Web Services API Version: 1.4 | June 3, 2015 ISAN REST Web Services API Scope ISAN Rest Web Services description Author Erica Ozonne Creation
 Documents
Using ArcGIS with OAuth 2 - Esri /devsummit... · 2014-01-03 · Before OAuth • Services recognized the problems with password authentication • Many services implemented things
 Documents
[MS-ADFSOAL]: Active Directory Federation Services OAuth Authorization ... · The Active Directory Federation Services OAuth Authcode Lookup Protocol is defined as a RESTful protocol
 Documents
SharePoint Content Events Sharing People 2010 Workflow _API (REST OM) Access Control OAuth Service BusWorkflow Manager Workflow Service Application.
 Documents
REST API Security: OAuth 2.0, JWTs, and More!
 Technology

Copyright © 2022 FDOCUMENTS