I have my own oAuth 2.0 authorization server and resource (API) server. The client will be Android apps. I'm looking for a scribe sample that works against a custom oAuth provider. Is scribe the best option available for doing oAuth from Android client apps?
I think you will find your answer in another stackoverflow response:
Android & OAUTH 2.0
Scribe requires various end points that people don't normally use. If you have the end points configured then yes Scribe is the best.
Related
I want to integrate Twitter with my Android application. Can I do this using OAuth 2.0?
I have searched the internet but couldn't find any good explanation regarding this. If anyone has done this before, can you please guide me through this. I saw in a old post here that Twitter doesn't support OAuth 2.0.
Basically, no, Twitter still uses OAuth 1.0a for most parts of their backend. Since march however, they support the OAuth 2 client credentials flow for application-only authentication.
This means, if you:
have an application that only shows tweets from other users or stuff like that, you can get authorized using OAuth 2.
want any users to use your app to post tweets or do anything else on a user's behalf, you have to struggle with OAuth 1.0a.
You should check out the Twitter4J library, which abstracts most of the OAuth 1 hassle away from you.
This might be of interest:
"... we're releasing our application-only authentication scheme, based
on the OAuth 2.0 client credentials flow."
Posted to dev.twitter 2013-03-11 https://dev.twitter.com/blog/application-only-authentication (current: https://blog.twitter.com/developer/en_us/a/2013/application-only-authentication.html)
So i need to be able to use Oauth for the login part on my Android application(not for Twitter, google,etc...) it's a private application. The rest of the app uses rest services w/ the authenticated token.
Here basically i'm looking for any tips, a library or an article recommendation. Most of the articles i found are about how to login to Google's services and such.
Thanks,
Check this one: scribe It is pretty simple.
Here it is a list of libraries cited by the Oauth2.0 "authority":
oauth.net/2
I am building a REST based api for my Android app. I use access tokens and basic header authentication currently. Any suggestions to improve the authentication process?
I suggest to use the OAuth protocol to manage API authentication. You can read more about this protocol here: http://oauth.net/.
+1 ezimuel - "OAuth" is an excellent suggestion.
However, I was surprised to see the link Getting Started with the Tasks API and OAuth 2.0 on Android was deprecated.
Please check out these links:
Google Play Authorization: http://developer.android.com/google/play-services/auth.html (also uses OAuth 2.0)
Authenticating to OAuth 2.0 Services: http://developer.android.com/training/id-auth/authenticate.html
OAuth and REST in Android (1): http://simpleprogrammer.com/2011/05/25/oauth-and-rest-in-android-part-1/
OAuth and REST in Android (2): http://simpleprogrammer.com/2011/06/04/oauth-and-rest-in-android-part-2/
In android how can I authenticate the user by Gmail account. Is their any api or support available for android.
Thanks...
Yes, you can use OAuth in Android. There's a fairly detailed post on this:
OAuth in Android using the Google APIs Client Library for Java
There are also two other Java libraries that you might consider for this purpose:
Scribe Java API (also supports using several other identity providers)
OAuth Signpost
Are you asking how to authenticate user in your android app?
You can create a gmail client to authenticate user based on their gmail a/c but This is a unsupported in android sdk.
Take a look at my answer here: https://stackoverflow.com/a/10245999/350691
Hope it helps!
In this Gooogle IO 11 presentation - http://code.google.com/p/google-api-java-client/wiki/Android speaker has mentioned that new google-api-java-client could be used to any rest json api.
Is it possible to use this library to authorize and use facebook graph api on Android?
It is possible to use the google-api-java-client to manage transport and authentication on non-Google APIs. However, many services that support OAuth implement slight variants or have bugs that may make this difficult. If the service is providing their own client library, it is probably best to use that (until it doesn't work, and then you should try the google-api-java-client).
Somebody make a sample for foursquare http://blog.doityourselfandroid.com/2011/09/05/integrate-foursquare-android-application/