Commit 15ff6551 authored by Łukasz Nowak's avatar Łukasz Nowak

Explain external authentication.

parent fa329129
...@@ -31,27 +31,40 @@ Example of using Bearer token:: ...@@ -31,27 +31,40 @@ Example of using Bearer token::
Authorization: Bearer 7Fjfp0ZBr1KtDRbnfVdmIw Authorization: Bearer 7Fjfp0ZBr1KtDRbnfVdmIw
Facebook authentication External authentication
+++++++++++++++++++++++ +++++++++++++++++++++++
It is possible to use Facebook as Authorisation Server in Oauth 2.0 It is possible to use Facebook and Google as Authorization Server with Oauth 2.0
architecture. Client shall fetch `access_token` as described in access tokens. Client shall fetch `access_token` as described in:
https://developers.facebook.com/docs/authentication/client-side/ and later use
it as in specially crafted `Authorization` header:: * https://developers.facebook.com/docs/authentication/client-side/ (Facebook)
* https://developers.google.com/accounts/docs/OAuth2Login (Google)
Such token shall be passed in `Authorization` header, in case of Facebook::
GET /api/v1/instance/{instance_id} HTTP/1.1
Host: example.com
Accept: application/json
Authorization: Facebook retrieved_access_token
and in case of Google::
GET /api/v1/instance/{instance_id} HTTP/1.1 GET /api/v1/instance/{instance_id} HTTP/1.1
Host: example.com Host: example.com
Accept: application/json Accept: application/json
Authorization: Facebook access_token_from_facebook Authorization: Google retrieved_access_token
The client is responsible for having its own Facebook application ID and The client is responsible for having its own application ID and
configure it that user basic information and email will be available after configure it that user basic information and email will be available after
using `access_token`, for example by fetching token after query like:: using `access_token`, for example by fetching token after query like::
https://www.facebook.com/dialog/oauth?client_id=FB_ID&response_type=token&redirect_uri=APP_URL&scope=email https://www.facebook.com/dialog/oauth?client_id=FB_ID&response_type=token&redirect_uri=APP_URL&scope=email
Server will contact with Facebook and use the logged in user profile. Facebook While passing access token Vifib.net server will contact proper Authorization
is trusted by server. Server (Google or Facebook) and use proper user profile. In case of first time
usage of the service the user will be automatically created, so application
shall be prepared to support HTTP ``"202 Accepted"`` code, as described in `Response status code`_.
Exchange format Exchange format
--------------- ---------------
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment