@bascule so what’s your favorite?
-
-
-
@peregrine Macaroons! -
@bascule thought you were joking. But I googled it. Our industry has such fucked up naming practices. -
@peregrine the name makes perfect sense if you consider the concept is cookies with layers -
@bascule yea I get it now. Trick is no client side libraries yet :-) -
@peregrine there are libraries for most major languages now. Which language are you concerned about? -
@bascule I guess I didn’t see a JavaScript or objective c lib -
@peregrine https://github.com/nitram509/macaroons.js … for JS, don't know something specific to ObjC but can't you use libmacaroons? - 4 more replies
New conversation -
-
-
@bascule What about better solutions?
New conversation -
-
-
.
@bascule OAuth2 is awful because its designers considered OAuth1 too difficult for developers to implement (HMAC, canonicalization, …) -
.
@randomoracle both OAuth1 and OAuth2 had completely clueless, incompetent designers who produced horrificlly bad standards - 1 more reply
New conversation -
-
-
@bascule You aren't talking about SAML are you? Or god help us, the ghost of BrowserID? -
@harryhalpin SAML had good intentions implemented in the most horrible way. I like Macaroons
End of conversation
New conversation -
-
-
@bascule@BlueBoxTraveler Ok, but what is a good alternative for OAuth {1,2}/OpenID that is actually available ?#justasking -
@nielsbasjes@BlueBoxTraveler Macaroons! -
@bascule@BlueBoxTraveler I assume you mean this http://research.google.com/pubs/pub41892.html … ?
End of conversation
New conversation -
-
-
@bascule Well said.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.