21 April 2014

The Ruby Reflector

Topic

OAuth2

  Source Favicon
By Mike Gunderloy of A Fresh Cup 1 year ago.
Email

Brakeman 1.9.3 Released - With Slim and HAML 4.0 support, better reporting, and more.

jQuery 2.0 Beta 2 Released - Just what you want if you're ready to kick IE 6/7/8 users to the curb.

Spectrum - jQuery colorpicker that just works with HTML5 color input controls, and degrades gracefully when it needs to.

Bootstrap 2.3.1 released - A handful of bugfixes.

OAuth1, OAuth2, OAuth...? - Egor Homakov picks apart OAuth and isn't impressed with what he finds.

afreshcup.com Read
  Source Favicon
By Shannon Behrens of JJinuxLand over 1 year ago.
Email

Phycocauth is a sample project that combines the following: PHP, YouTube, OAuth2, CodeIgniter, the CodeIgniter Youtube API Library, and the Google APIs Client Library for PHP.

I'm releasing this proof of concept to show that it's possible to integrate the CodeIgniter Youtube API Library with the Google APIs Client Library for PHP. Once version 3 of the YouTube API is ready, the CodeIgniter Youtube API Library will no longer be necessary. All …

jjinux.blogspot.com Read
  Source Favicon
By Peter Cooper of Ruby Inside almost 2 years ago.
Email

…allows you to publish a gist from Ruby or the command line including file uploads and OAuth2 authentication.

ffi-http-parser: Ruby FFI Bindings to the 'http-parser' Library

http-parser is a high performance HTTP message parser written in C by Joyent. ffi-http-parser can hook your Ruby scripts up to it for parsing both HTTP requests and responses.

R18n: I18N Tool to Translate Your Ruby Application

OmniAuth StackExchange: StackExchange OAuth Strategy…

rubyinside.com Read
  Source Favicon
By Shannon Behrens of JJinuxLand almost 2 years ago.
Email

It's based on OAuth2, Ajax, and Backbone.js models.

They've integrated persistence to StackMob into their Backbone.js-based API.

They have a nice looking dashboard.

It looks like their datastore is schemaless.

They use a mix of MySQL and MongoDB.

You can fetch an object as well as all of its related objects, up to depth of 3. I'm worried about the security implications of retrieving things you shouldn't have access to.

I'm also worried that someone …

jjinux.blogspot.com Read
  Source Favicon
By Assaf of Labnotes almost 2 years ago.
Email

…culture ?

Respect among peers forms the foundation for any type of open communication. A place where people feel comfortable challenging each other's ideas is one where sound ideas get forged through debate. A place where people easily get offended is one where crucial feedback gets withheld.

QotD Niall O'Higgins :

OAuth2 is all fun and games until some provider makes you implement refresh tokens.

blog.labnotes.org Read
  Source Favicon
By Pelle Braendgaard of Stake Ventures Inc. over 2 years ago.
Email

…today and OpenID Connect is being worked on a very simple extension on top of OAuth2 which solves most of the real world problems people saw from using OAuth to replace OpenID.

Run through of Manu's sections

I wont be able to go through all of the sections today as it will take me all day. I will come back and do the rest at a later date.

IRIs for Identifiers

Manu's section

I'm sorry calling URI's IRI just smells of political correctness. …

stakeventures.com Read
  Source Favicon
By Mike Gunderloy of A Fresh Cup over 2 years ago.
Email

Doorkeeper - OAuth2 provider for Rails, still a work in progress.

Python Ecosystem - An Introduction - If I was going to switch to Python, this looks like a quick way to get the lay of the land.

YaCy - Decentralized open source search engine. A valiant quixotic effort.

Watch a VC use my name to sell a con - I've been through the "work insane hours, sleep under your desk" phase myself. Didn't get me jack shit in the long run. …

afreshcup.com Read
  Source Favicon
By Patrick Lenz of Patrick Lenz 3 years ago.
Email

…it's much easier to simply kill the process in question, since it is automatically restarted through launchd : killall -9 mDNSResponder

Using Pow makes it a piece of cake to setup all of the required instances to, for example, test rather involved OAuth2 setups with OAuth provider and consumer. You can find more about Pow including a very detailed user manual at its homepage at pow.cx .

poocs.net Read
  Source Favicon
By Rodrigo Flores of Plataformatec Blog over 3 years ago.
Email

Testing OmniAuth callbacks is in general cumbersome but for OAuth2 providers it is a bit easier as it uses Faraday internally to connect to the provider. With Faraday, we can configure a test adapter and stub calls to return what we want.

The OmniAuth strategy provides an entry point to the Faraday connection, but we don't have an access to the strategy directly, so we need to store it globally. For a Facebook strategy, we can achieve it as below whenever configuring Omniauth…

blog.plataformatec.com.br Read
  Source Favicon
By Assaf of Labnotes over 3 years ago.
Email

…simple API, by making them available as class methods of Rack:: OAuth2::Server . Adding documentation and usage samples could surely help. If you need to register client applications from your code, or change existing registrations, that's also easier now with the register method.

Security Issue With 1.4

While working on 2.0, I find a potential security issue with 1.4. I strongly urge you to upgrade.

Prior to 2.0, I made the assumption all client applications …

blog.labnotes.org Read