SlideShare une entreprise Scribd logo

Facebook & OAuth

Danny Deng
Danny Deng

Social Web Design Workshop #1 @NCKUEE92225, 2014/05/14 Facebook OAuth Introduction. Coding with PHP and NodeJS.

InternetTechnologieBusiness
1  sur  92
Télécharger pour lire hors ligne
2014. By Deng Wei-Dai. For Social Web Design Workshop. 淺談Facebook & OAuth與Live實作 鄧維岱 Danny Deng 2014.05.14 @ 成⼤大電機系92225 1 Social Web Design Workshop #1
2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny 2
2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 2
2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 • MOVEMENT @ SWD 2013 • www.movement-itw.com 2
2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 • MOVEMENT @ SWD 2013 • www.movement-itw.com 2
2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 • MOVEMENT @ SWD 2013 • www.movement-itw.com 2
2014. By Deng Wei-Dai. For Social Web Design Workshop. What is OAuth? 3
2014. By Deng Wei-Dai. For Social Web Design Workshop. What is OAuth? 3 Open Standard for Authorization
2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4
2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4 Website.APP
2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4 Website.APP FB.GitHub. LinkedIn
2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4 Website.APP FB.GitHub. LinkedIn Name.Birth. Email.Photo
2014. By Deng Wei-Dai. For Social Web Design Workshop. Why OAuth? 5
2014. By Deng Wei-Dai. For Social Web Design Workshop. We do not need to sign up new accounts Why OAuth? 5
2014. By Deng Wei-Dai. For Social Web Design Workshop. 6 So,
2014. By Deng Wei-Dai. For Social Web Design Workshop. How OAuth works? 6 So,
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE 7
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE 7 授權程式從_____存取資料
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 7 授權程式從_____存取資料
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 7 授權程式從_____存取資料
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 • Authorization Server: 授權Access Token的伺服器 7 授權程式從_____存取資料
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 • Authorization Server: 授權Access Token的伺服器 • Client: Third-Party程式、APP 7 授權程式從_____存取資料
2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8
2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8 Client ID
2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8 Client ID Client Secret
2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8 Client ID Client Secret Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 9 more reference for scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 9 Public Profile (Default).email… more reference for scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 9 Public Profile (Default).email… more reference for scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 • State: (RECOMMEND) Random, prevent CSRF 9 Public Profile (Default).email… more reference for scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 • State: (RECOMMEND) Random, prevent CSRF • Code: Get Access Token 9 Public Profile (Default).email… more reference for scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 • State: (RECOMMEND) Random, prevent CSRF • Code: Get Access Token • Access Token: Main KEY 9 Public Profile (Default).email… more reference for scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. OAuth Flow 10
2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 • Authorization Server: 授權Access Token的伺服器 • Client: Third-Party程式、APP 11 授權程式從_____存取資料
2014. By Deng Wei-Dai. For Social Web Design Workshop. 12
2014. By Deng Wei-Dai. For Social Web Design Workshop. 12
2014. By Deng Wei-Dai. For Social Web Design Workshop. 12 Client ID, Redirect URI,Scope, State…
2014. By Deng Wei-Dai. For Social Web Design Workshop. 12 Client ID, Redirect URI,Scope, State… Agree?
2014. By Deng Wei-Dai. For Social Web Design Workshop. 12 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 13
2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state CHECK state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token
2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token Call Graph API (FB)
2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token Call Graph API (FB) GET User’s info
2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token Call Graph API (FB) Login Success GET User’s info
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15 Authorization Server Client
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15 Authorization Server Client Authorization Endpoint Token Endpoint
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT 16 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
2014. By Deng Wei-Dai. For Social Web Design Workshop. 17 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 17 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 17 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. https://www.facebook.com/dialog/oauth? client_id=580500188730688
 &redirect_uri=http://merry.ee.ncku.edu.tw/redirect
 &state=d41d8cd98f00b204e9800998ecf8427e
 &response_type=code
 &scope=email 18 向Authorization Endpoint提出請求 data which redirect back is code
2014. By Deng Wei-Dai. For Social Web Design Workshop. 19
2014. By Deng Wei-Dai. For Social Web Design Workshop. DENY OR ERROR http://your_redirect_uri?
 error=error
 &error_code=error_code
 &error_description=description
 &error_reason=error_reason
 &state=state 19 more reference for error
2014. By Deng Wei-Dai. For Social Web Design Workshop. DENY OR ERROR http://your_redirect_uri?
 error=error
 &error_code=error_code
 &error_description=description
 &error_reason=error_reason
 &state=state 19 more reference for error http://your_redirect_uri?
 code=code
 &state=state AGREE
2014. By Deng Wei-Dai. For Social Web Design Workshop. 20 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 20 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT 21 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
2014. By Deng Wei-Dai. For Social Web Design Workshop. 22 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. 22 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT 23 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
2014. By Deng Wei-Dai. For Social Web Design Workshop. 24 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. 24 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. 24 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
2014. By Deng Wei-Dai. For Social Web Design Workshop. https://graph.facebook.com/oauth/access_token? client_id=client_id 
 &client_secret=client_secret
 &redirect_uri=redirect_uri
 &code=code 25 向Token Endpoint提出請求 Afterwards, get access_token
2014. By Deng Wei-Dai. For Social Web Design Workshop. 26 Access Token Call Graph API (FB) Login Success GET User’s info
2014. By Deng Wei-Dai. For Social Web Design Workshop. 26 Access Token Call Graph API (FB) Login Success GET User’s info
2014. By Deng Wei-Dai. For Social Web Design Workshop. https://graph.facebook.com/me? access_token=access_token 27 Graph API request access_token We will get info depending on scope
2014. By Deng Wei-Dai. For Social Web Design Workshop. So far, Question? 28
2014. By Deng Wei-Dai. For Social Web Design Workshop. Live Coding 29 Facebook SDK for JavaScript?
2014. By Deng Wei-Dai. For Social Web Design Workshop. 30 Download Materials
2014. By Deng Wei-Dai. For Social Web Design Workshop. Let’s start ! 31
2014. By Deng Wei-Dai. For Social Web Design Workshop. Create Facebook App 32
2014. By Deng Wei-Dai. For Social Web Design Workshop. PHP 33
2014. By Deng Wei-Dai. For Social Web Design Workshop. STRUCTURE PHP Folder • index.html • jquery-2.0.2.min.js • facebook.php • facebook.png 34
2014. By Deng Wei-Dai. For Social Web Design Workshop. CURL DETAIL • curl_setopt(ch, option, value); • CURLOPT_URL: 設定擷取網址 • CURLOPT_RETURNTRANSFER: 回傳是否字串 • curl_exec($ch): 執⾏行 • curl_close($ch): 關閉 35
2014. By Deng Wei-Dai. For Social Web Design Workshop. NodeJS 36 If we have time…
2014. By Deng Wei-Dai. For Social Web Design Workshop. NodeJS 36 With Express and Passport If we have time…
2014. By Deng Wei-Dai. For Social Web Design Workshop. STEP npm install express-generator (Installed by Prof.) 1. ssh username@merry.ee.ncku.edu.tw 2. express XXX (XXX is a folder) 3. cd XXX & npm install 4. npm install passport 5. npm install passport-facebook 37
2014. By Deng Wei-Dai. For Social Web Design Workshop. STRUCTURE NodeJS Folder • app.js • routes/index.js • html/facebook.html 38
2014. By Deng Wei-Dai. For Social Web Design Workshop. MORE REFERENCE • Passport Authentication for Node.js Applications • Easy Node Authentication: Facebook • Notice: Express3.0. We have installed express 4.0 39
2014. By Deng Wei-Dai. For Social Web Design Workshop. Is OAuth safe? 40
2014. By Deng Wei-Dai. For Social Web Design Workshop. I do not think so… Is OAuth safe? 40
2014. By Deng Wei-Dai. For Social Web Design Workshop. 41 Any Question?
2014. By Deng Wei-Dai. For Social Web Design Workshop. 42 Thanks for your listening! a55660988@gmail.com
2014. By Deng Wei-Dai. For Social Web Design Workshop. MORE REFERENCE • (Ruby)簡單易懂的 OAuth 2.0 - 如何⽤用 OAuth 2 鎖住 你的 API • OAuth 和 OpenID 到底是什麼呢? • Spec: The OAuth 2.0 Authorization Framework 43

Recommandé

Evaluation g324
Evaluation g324Evaluation g324
Evaluation g324
iwehfkhvwhdl
 
Pdhpe
PdhpePdhpe
Pdhpe
752975
 
Sample 복사본
Sample 복사본Sample 복사본
Sample 복사본
Jonghyun Park
 
COS-PROFILE
COS-PROFILECOS-PROFILE
COS-PROFILE
osaka_wild
 
Pipeline
PipelinePipeline
Pipeline
Trump Wu
 
Le domaine ingénierie et Architecture de la HES-SO
Le domaine ingénierie et Architecture de la HES-SOLe domaine ingénierie et Architecture de la HES-SO
Le domaine ingénierie et Architecture de la HES-SO
Sylvie Villa
 
Kent Muer - Creating Business for Local Companies
Kent Muer - Creating Business for Local CompaniesKent Muer - Creating Business for Local Companies
Kent Muer - Creating Business for Local Companies
Kent Muer
 
The Circulatory system Complete
The Circulatory system Complete The Circulatory system Complete
The Circulatory system Complete
Harshgurawaliya
 

Recommandé

Evaluation g324
Evaluation g324Evaluation g324
Evaluation g324
iwehfkhvwhdl
 
Pdhpe
PdhpePdhpe
Pdhpe
752975
 
Sample 복사본
Sample 복사본Sample 복사본
Sample 복사본
Jonghyun Park
 
COS-PROFILE
COS-PROFILECOS-PROFILE
COS-PROFILE
osaka_wild
 
Pipeline
PipelinePipeline
Pipeline
Trump Wu
 
Le domaine ingénierie et Architecture de la HES-SO
Le domaine ingénierie et Architecture de la HES-SOLe domaine ingénierie et Architecture de la HES-SO
Le domaine ingénierie et Architecture de la HES-SO
Sylvie Villa
 
Kent Muer - Creating Business for Local Companies
Kent Muer - Creating Business for Local CompaniesKent Muer - Creating Business for Local Companies
Kent Muer - Creating Business for Local Companies
Kent Muer
 
The Circulatory system Complete
The Circulatory system Complete The Circulatory system Complete
The Circulatory system Complete
Harshgurawaliya
 
Swiss engineering rts mars 2011
Swiss engineering rts mars 2011Swiss engineering rts mars 2011
Swiss engineering rts mars 2011
Sylvie Villa
 
LinkedIn - Creating your Business & Professional Profile
LinkedIn - Creating your Business & Professional ProfileLinkedIn - Creating your Business & Professional Profile
LinkedIn - Creating your Business & Professional Profile
Kieran Desmond
 
A3 no4 décembre 2008
A3 no4 décembre 2008A3 no4 décembre 2008
A3 no4 décembre 2008
Sylvie Villa
 
Seerwan's CV
Seerwan's CVSeerwan's CV
Seerwan's CV
seerwan Salih
 
2016 Dec_CV_Angel Lee
2016 Dec_CV_Angel Lee2016 Dec_CV_Angel Lee
2016 Dec_CV_Angel Lee
Angel LEE
 
101 marketing for recruitment branding
101 marketing for recruitment branding101 marketing for recruitment branding
101 marketing for recruitment branding
Andreea Bucur
 
AnteIntroduction
AnteIntroductionAnteIntroduction
AnteIntroduction
Jerry Huang
 
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
Brian Campbell
 
Spider web proposal
Spider web proposalSpider web proposal
Spider web proposal
chrisdawson42
 
Wordpress Website Proposal Template PowerPoint Presentation Slides
Wordpress Website Proposal Template PowerPoint Presentation SlidesWordpress Website Proposal Template PowerPoint Presentation Slides
Wordpress Website Proposal Template PowerPoint Presentation Slides
SlideTeam
 
WordpressDeveloper.docx
WordpressDeveloper.docxWordpressDeveloper.docx
WordpressDeveloper.docx
nisaridas veerachery
 
Website Development Proposal PowerPoint Presentation Slides
Website Development Proposal PowerPoint Presentation SlidesWebsite Development Proposal PowerPoint Presentation Slides
Website Development Proposal PowerPoint Presentation Slides
SlideTeam
 
INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...
INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...
INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...
apidays
 
Android Mobile App Development Proposal PowerPoint Presentation Slides
Android Mobile App Development Proposal PowerPoint Presentation SlidesAndroid Mobile App Development Proposal PowerPoint Presentation Slides
Android Mobile App Development Proposal PowerPoint Presentation Slides
SlideTeam
 
Accelerating API Development With OpenAPI and Serverless
Accelerating API Development With OpenAPI and ServerlessAccelerating API Development With OpenAPI and Serverless
Accelerating API Development With OpenAPI and Serverless
SmartBear
 
Layar November 5 Webinar - Discover the New Geo SDK
Layar November 5 Webinar - Discover the New Geo SDKLayar November 5 Webinar - Discover the New Geo SDK
Layar November 5 Webinar - Discover the New Geo SDK
Layar
 
Fully Tested: From Design to MVP In 3 Weeks
Fully Tested: From Design to MVP In 3 WeeksFully Tested: From Design to MVP In 3 Weeks
Fully Tested: From Design to MVP In 3 Weeks
SmartBear
 
Progressive Web Apps: The Breakdown
Progressive Web Apps: The BreakdownProgressive Web Apps: The Breakdown
Progressive Web Apps: The Breakdown
UXDXConf
 
Website Editing Proposal PowerPoint Presentation Slides
Website Editing Proposal PowerPoint Presentation SlidesWebsite Editing Proposal PowerPoint Presentation Slides
Website Editing Proposal PowerPoint Presentation Slides
SlideTeam
 
Oauth and SharePoint 2013 Provider Hosted apps
Oauth and SharePoint 2013 Provider Hosted appsOauth and SharePoint 2013 Provider Hosted apps
Oauth and SharePoint 2013 Provider Hosted apps
James Tramel
 
Owning the Lifecycle of a Drupal Digital Project
Owning the Lifecycle of a Drupal Digital ProjectOwning the Lifecycle of a Drupal Digital Project
Owning the Lifecycle of a Drupal Digital Project
Acquia
 
Stateless token-based authentication for pure front-end applications
Stateless token-based authentication for pure front-end applicationsStateless token-based authentication for pure front-end applications
Stateless token-based authentication for pure front-end applications
Alvaro Sanchez-Mariscal
 

Contenu connexe

En vedette

2016 Dec_CV_Angel Lee
2016 Dec_CV_Angel Lee2016 Dec_CV_Angel Lee
2016 Dec_CV_Angel Lee
Angel LEE
 
AnteIntroduction
AnteIntroductionAnteIntroduction
AnteIntroduction
Jerry Huang
 

En vedette (7)

Swiss engineering rts mars 2011
Swiss engineering rts mars 2011Swiss engineering rts mars 2011
Swiss engineering rts mars 2011
 
LinkedIn - Creating your Business & Professional Profile
LinkedIn - Creating your Business & Professional ProfileLinkedIn - Creating your Business & Professional Profile
LinkedIn - Creating your Business & Professional Profile
 
A3 no4 décembre 2008
A3 no4 décembre 2008A3 no4 décembre 2008
A3 no4 décembre 2008
 
Seerwan's CV
Seerwan's CVSeerwan's CV
Seerwan's CV
 
2016 Dec_CV_Angel Lee
2016 Dec_CV_Angel Lee2016 Dec_CV_Angel Lee
2016 Dec_CV_Angel Lee
 
101 marketing for recruitment branding
101 marketing for recruitment branding101 marketing for recruitment branding
101 marketing for recruitment branding
 
AnteIntroduction
AnteIntroductionAnteIntroduction
AnteIntroduction
 

Similaire à Facebook & OAuth

OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
Brian Campbell
 
Owning the Lifecycle of a Drupal Digital Project
Owning the Lifecycle of a Drupal Digital ProjectOwning the Lifecycle of a Drupal Digital Project
Owning the Lifecycle of a Drupal Digital Project
Acquia
 

Similaire à Facebook & OAuth (20)

OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
OpenID Connect - a simple[sic] single sign-on & identity layer on top of OAut...
 
Spider web proposal
Spider web proposalSpider web proposal
Spider web proposal
 
Wordpress Website Proposal Template PowerPoint Presentation Slides
Wordpress Website Proposal Template PowerPoint Presentation SlidesWordpress Website Proposal Template PowerPoint Presentation Slides
Wordpress Website Proposal Template PowerPoint Presentation Slides
 
WordpressDeveloper.docx
WordpressDeveloper.docxWordpressDeveloper.docx
WordpressDeveloper.docx
 
Website Development Proposal PowerPoint Presentation Slides
Website Development Proposal PowerPoint Presentation SlidesWebsite Development Proposal PowerPoint Presentation Slides
Website Development Proposal PowerPoint Presentation Slides
 
INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...
INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...
INTERFACE by apidays 2023 - Refining Your API: The Last Mile of API Design, J...
 
Android Mobile App Development Proposal PowerPoint Presentation Slides
Android Mobile App Development Proposal PowerPoint Presentation SlidesAndroid Mobile App Development Proposal PowerPoint Presentation Slides
Android Mobile App Development Proposal PowerPoint Presentation Slides
 
Accelerating API Development With OpenAPI and Serverless
Accelerating API Development With OpenAPI and ServerlessAccelerating API Development With OpenAPI and Serverless
Accelerating API Development With OpenAPI and Serverless
 
Layar November 5 Webinar - Discover the New Geo SDK
Layar November 5 Webinar - Discover the New Geo SDKLayar November 5 Webinar - Discover the New Geo SDK
Layar November 5 Webinar - Discover the New Geo SDK
 
Fully Tested: From Design to MVP In 3 Weeks
Fully Tested: From Design to MVP In 3 WeeksFully Tested: From Design to MVP In 3 Weeks
Fully Tested: From Design to MVP In 3 Weeks
 
Progressive Web Apps: The Breakdown
Progressive Web Apps: The BreakdownProgressive Web Apps: The Breakdown
Progressive Web Apps: The Breakdown
 
Website Editing Proposal PowerPoint Presentation Slides
Website Editing Proposal PowerPoint Presentation SlidesWebsite Editing Proposal PowerPoint Presentation Slides
Website Editing Proposal PowerPoint Presentation Slides
 
Oauth and SharePoint 2013 Provider Hosted apps
Oauth and SharePoint 2013 Provider Hosted appsOauth and SharePoint 2013 Provider Hosted apps
Oauth and SharePoint 2013 Provider Hosted apps
 
Owning the Lifecycle of a Drupal Digital Project
Owning the Lifecycle of a Drupal Digital ProjectOwning the Lifecycle of a Drupal Digital Project
Owning the Lifecycle of a Drupal Digital Project
 
Stateless token-based authentication for pure front-end applications
Stateless token-based authentication for pure front-end applicationsStateless token-based authentication for pure front-end applications
Stateless token-based authentication for pure front-end applications
 
CIS 2015 Extreme OAuth - Paul Meyer
CIS 2015 Extreme OAuth - Paul MeyerCIS 2015 Extreme OAuth - Paul Meyer
CIS 2015 Extreme OAuth - Paul Meyer
 
Refining Your API Design - Architecture and Modeling Learning Event
Refining Your API Design - Architecture and Modeling Learning EventRefining Your API Design - Architecture and Modeling Learning Event
Refining Your API Design - Architecture and Modeling Learning Event
 
Website Creation Proposal PowerPoint Presentation Slides
Website Creation Proposal PowerPoint Presentation SlidesWebsite Creation Proposal PowerPoint Presentation Slides
Website Creation Proposal PowerPoint Presentation Slides
 
Focus sur les PWA par Loic de Saint-Andrieu de Google
Focus sur les PWA par Loic de Saint-Andrieu de GoogleFocus sur les PWA par Loic de Saint-Andrieu de Google
Focus sur les PWA par Loic de Saint-Andrieu de Google
 
lukecyriac
lukecyriaclukecyriac
lukecyriac
 

Dernier

6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
@Chandigarh #call #Girls 9053900678 @Call #Girls in @Punjab 9053900678
 
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Delhi Call girls
 
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
soniya singh
 
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
soniya singh
 
Call Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort Service
Call Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort ServiceCall Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort Service
Call Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort Service
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...
Sheetaleventcompany
 
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
Diya Sharma
 
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine ServiceHot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
sexy call girls service in goa
 
Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.
soniya singh
 
Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝
soniya singh
 
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
SUHANI PANDEY
 
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort ServiceEnjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Delhi Call girls
 
Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...
Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...
Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...
Call Girls in Nagpur High Profile
 
VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
Call Girls In Delhi Whatsup 9873940964 Enjoy Unlimited Pleasure
 
Dubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls Dubai
Dubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls DubaiDubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls Dubai
Dubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls Dubai
kojalkojal131
 
(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...
(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...
(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...
Escorts Call Girls
 
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
SUHANI PANDEY
 

Dernier (20)

6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
 
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
 
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
 
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
 
Call Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort Service
Call Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort ServiceCall Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort Service
Call Girls in Prashant Vihar, Delhi 💯 Call Us 🔝9953056974 🔝 Escort Service
 
Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❤️ 7710465962 Independent Call Girls In C...
 
Real Men Wear Diapers T Shirts sweatshirt
Real Men Wear Diapers T Shirts sweatshirtReal Men Wear Diapers T Shirts sweatshirt
Real Men Wear Diapers T Shirts sweatshirt
 
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
 
Trump Diapers Over Dems t shirts Sweatshirt
Trump Diapers Over Dems t shirts SweatshirtTrump Diapers Over Dems t shirts Sweatshirt
Trump Diapers Over Dems t shirts Sweatshirt
 
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine ServiceHot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
 
Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.
Call Now ☎ 8264348440 !! Call Girls in Rani Bagh Escort Service Delhi N.C.R.
 
Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Sukhdev Vihar Delhi 💯Call Us 🔝8264348440🔝
 
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
Ganeshkhind ! Call Girls Pune - 450+ Call Girl Cash Payment 8005736733 Neha T...
 
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort ServiceEnjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
Enjoy Night⚡Call Girls Dlf City Phase 3 Gurgaon >༒8448380779 Escort Service
 
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
 
Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...
Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...
Top Rated Pune Call Girls Daund ⟟ 6297143586 ⟟ Call Me For Genuine Sex Servi...
 
VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Connaught Place ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
 
Dubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls Dubai
Dubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls DubaiDubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls Dubai
Dubai=Desi Dubai Call Girls O525547819 Outdoor Call Girls Dubai
 
(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...
(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...
(+971568250507 ))# Young Call Girls in Ajman By Pakistani Call Girls in ...
 
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
Shikrapur - Call Girls in Pune Neha 8005736733 | 100% Gennuine High Class Ind...
 

Facebook & OAuth

  • 1. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 淺談Facebook & OAuth與Live實作 鄧維岱 Danny Deng 2014.05.14 @ 成⼤大電機系92225 1 Social Web Design Workshop #1
  • 2. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny 2
  • 3. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 2
  • 4. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 • MOVEMENT @ SWD 2013 • www.movement-itw.com 2
  • 5. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 • MOVEMENT @ SWD 2013 • www.movement-itw.com 2
  • 6. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ABOUT ME • 鄧維岱 Danny • NCKU EE104 • MOVEMENT @ SWD 2013 • www.movement-itw.com 2
  • 7. 2014. By Deng Wei-Dai. For Social Web Design Workshop. What is OAuth? 3
  • 8. 2014. By Deng Wei-Dai. For Social Web Design Workshop. What is OAuth? 3 Open Standard for Authorization
  • 9. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4
  • 10. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4 Website.APP
  • 11. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4 Website.APP FB.GitHub. LinkedIn
  • 12. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 授權程式從_____存取資料 4 Website.APP FB.GitHub. LinkedIn Name.Birth. Email.Photo
  • 13. 2014. By Deng Wei-Dai. For Social Web Design Workshop. Why OAuth? 5
  • 14. 2014. By Deng Wei-Dai. For Social Web Design Workshop. We do not need to sign up new accounts Why OAuth? 5
  • 15. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 6 So,
  • 16. 2014. By Deng Wei-Dai. For Social Web Design Workshop. How OAuth works? 6 So,
  • 17. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE 7
  • 18. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE 7 授權程式從_____存取資料
  • 19. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 7 授權程式從_____存取資料
  • 20. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 7 授權程式從_____存取資料
  • 21. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 • Authorization Server: 授權Access Token的伺服器 7 授權程式從_____存取資料
  • 22. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 • Authorization Server: 授權Access Token的伺服器 • Client: Third-Party程式、APP 7 授權程式從_____存取資料
  • 23. 2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8
  • 24. 2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8 Client ID
  • 25. 2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8 Client ID Client Secret
  • 26. 2014. By Deng Wei-Dai. For Social Web Design Workshop. CLIENT 8 Client ID Client Secret Redirect URI
  • 27. 2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 9 more reference for scope
  • 28. 2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 9 Public Profile (Default).email… more reference for scope
  • 29. 2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 9 Public Profile (Default).email… more reference for scope
  • 30. 2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 • State: (RECOMMEND) Random, prevent CSRF 9 Public Profile (Default).email… more reference for scope
  • 31. 2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 • State: (RECOMMEND) Random, prevent CSRF • Code: Get Access Token 9 Public Profile (Default).email… more reference for scope
  • 32. 2014. By Deng Wei-Dai. For Social Web Design Workshop. • Scope: 存取資料範圍 • State: (RECOMMEND) Random, prevent CSRF • Code: Get Access Token • Access Token: Main KEY 9 Public Profile (Default).email… more reference for scope
  • 33. 2014. By Deng Wei-Dai. For Social Web Design Workshop. OAuth Flow 10
  • 34. 2014. By Deng Wei-Dai. For Social Web Design Workshop. ROLE • Resource Owner: 使⽤用者 • Resource Server: 存放使⽤用者資料的伺服器 • Authorization Server: 授權Access Token的伺服器 • Client: Third-Party程式、APP 11 授權程式從_____存取資料
  • 35. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 12
  • 36. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 12
  • 37. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 12 Client ID, Redirect URI,Scope, State…
  • 38. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 12 Client ID, Redirect URI,Scope, State… Agree?
  • 39. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 12 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
  • 40. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 13
  • 41. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state
  • 42. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state CHECK state
  • 43. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state
  • 44. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state CHECK 1.Client info 2.Redirect URI
  • 45. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 13 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
  • 46. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token
  • 47. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token Call Graph API (FB)
  • 48. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token Call Graph API (FB) GET User’s info
  • 49. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 14 Access Token Call Graph API (FB) Login Success GET User’s info
  • 50. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15
  • 51. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15 Authorization Server Client
  • 52. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15 Authorization Server Client Authorization Endpoint Token Endpoint
  • 53. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT(a little bit detail) 15 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
  • 54. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT 16 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
  • 55. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 17 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
  • 56. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 17 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
  • 57. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 17 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
  • 58. 2014. By Deng Wei-Dai. For Social Web Design Workshop. https://www.facebook.com/dialog/oauth? client_id=580500188730688
 &redirect_uri=http://merry.ee.ncku.edu.tw/redirect
 &state=d41d8cd98f00b204e9800998ecf8427e
 &response_type=code
 &scope=email 18 向Authorization Endpoint提出請求 data which redirect back is code
  • 59. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 19
  • 60. 2014. By Deng Wei-Dai. For Social Web Design Workshop. DENY OR ERROR http://your_redirect_uri?
 error=error
 &error_code=error_code
 &error_description=description
 &error_reason=error_reason
 &state=state 19 more reference for error
  • 61. 2014. By Deng Wei-Dai. For Social Web Design Workshop. DENY OR ERROR http://your_redirect_uri?
 error=error
 &error_code=error_code
 &error_description=description
 &error_reason=error_reason
 &state=state 19 more reference for error http://your_redirect_uri?
 code=code
 &state=state AGREE
  • 62. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 20 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
  • 63. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 20 Client ID, Redirect URI,Scope, State… Agree? Grant code Error msg With same state
  • 64. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT 21 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
  • 65. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 22 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
  • 66. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 22 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
  • 67. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 3 PROTOCOL ENDPOINT 23 Authorization Server Redirection Endpoint Client Authorization Endpoint Token Endpoint
  • 68. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 24 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
  • 69. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 24 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
  • 70. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 24 Send to Redirect URI Grant code Error msg with same state Client info, Grant code CHECK state Access Token CHECK 1.Client info 2.Redirect URI
  • 71. 2014. By Deng Wei-Dai. For Social Web Design Workshop. https://graph.facebook.com/oauth/access_token? client_id=client_id 
 &client_secret=client_secret
 &redirect_uri=redirect_uri
 &code=code 25 向Token Endpoint提出請求 Afterwards, get access_token
  • 72. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 26 Access Token Call Graph API (FB) Login Success GET User’s info
  • 73. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 26 Access Token Call Graph API (FB) Login Success GET User’s info
  • 74. 2014. By Deng Wei-Dai. For Social Web Design Workshop. https://graph.facebook.com/me? access_token=access_token 27 Graph API request access_token We will get info depending on scope
  • 75. 2014. By Deng Wei-Dai. For Social Web Design Workshop. So far, Question? 28
  • 76. 2014. By Deng Wei-Dai. For Social Web Design Workshop. Live Coding 29 Facebook SDK for JavaScript?
  • 77. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 30 Download Materials
  • 78. 2014. By Deng Wei-Dai. For Social Web Design Workshop. Let’s start ! 31
  • 79. 2014. By Deng Wei-Dai. For Social Web Design Workshop. Create Facebook App 32
  • 80. 2014. By Deng Wei-Dai. For Social Web Design Workshop. PHP 33
  • 81. 2014. By Deng Wei-Dai. For Social Web Design Workshop. STRUCTURE PHP Folder • index.html • jquery-2.0.2.min.js • facebook.php • facebook.png 34
  • 82. 2014. By Deng Wei-Dai. For Social Web Design Workshop. CURL DETAIL • curl_setopt(ch, option, value); • CURLOPT_URL: 設定擷取網址 • CURLOPT_RETURNTRANSFER: 回傳是否字串 • curl_exec($ch): 執⾏行 • curl_close($ch): 關閉 35
  • 83. 2014. By Deng Wei-Dai. For Social Web Design Workshop. NodeJS 36 If we have time…
  • 84. 2014. By Deng Wei-Dai. For Social Web Design Workshop. NodeJS 36 With Express and Passport If we have time…
  • 85. 2014. By Deng Wei-Dai. For Social Web Design Workshop. STEP npm install express-generator (Installed by Prof.) 1. ssh username@merry.ee.ncku.edu.tw 2. express XXX (XXX is a folder) 3. cd XXX & npm install 4. npm install passport 5. npm install passport-facebook 37
  • 86. 2014. By Deng Wei-Dai. For Social Web Design Workshop. STRUCTURE NodeJS Folder • app.js • routes/index.js • html/facebook.html 38
  • 87. 2014. By Deng Wei-Dai. For Social Web Design Workshop. MORE REFERENCE • Passport Authentication for Node.js Applications • Easy Node Authentication: Facebook • Notice: Express3.0. We have installed express 4.0 39
  • 88. 2014. By Deng Wei-Dai. For Social Web Design Workshop. Is OAuth safe? 40
  • 89. 2014. By Deng Wei-Dai. For Social Web Design Workshop. I do not think so… Is OAuth safe? 40
  • 90. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 41 Any Question?
  • 91. 2014. By Deng Wei-Dai. For Social Web Design Workshop. 42 Thanks for your listening! a55660988@gmail.com
  • 92. 2014. By Deng Wei-Dai. For Social Web Design Workshop. MORE REFERENCE • (Ruby)簡單易懂的 OAuth 2.0 - 如何⽤用 OAuth 2 鎖住 你的 API • OAuth 和 OpenID 到底是什麼呢? • Spec: The OAuth 2.0 Authorization Framework 43