Alternatives to OAuth?
- by sdolgy
The Web industry is shifting / has shifted towards using OAuth when extending API services to external consumers & developers. There is some elegance in simple....and well, the 3-step OAuth process isn't too bad ... i just find it is the best of a bad bunch of options.
Are there alternatives out there that could be better, and more secure?
The security reference is derived from the following URLs:
http://www.infoq.com/news/2010/09/oauth2-bad-for-web
http://hueniverse.com/2010/09/oauth-2-0-without-signatures-is-bad-for-the-web/