tags:

views:

106

answers:

4
Q: 

Benefits of implementing OAuth

From a webservice provider point of view what is the benefit of asking users to create an account or login using 3rd party web service provider (e.g: Twitter or facebook) to log into your site with?

Wouldn't it be easier to ask the user to provide their twitter or facebook login and use that to pull the user's twitter or facebook data?

It is safer to use OAuth than giving some one the internet our twitter or facebook login credential. But, I can't figure out the benefit from the web service point of view.

+3  A: 

One obvious benefit is that generally you're going to be connecting to an API rather than logging in through the user's account and scraping html.

The primary benefit though as you stated is to provide security for the user. I for one would never type my email/twitter/etc passwords on your site directly. That's the whole point of what OAuth is for.

FryGuy  2010-06-12 00:26:39
A: 

Perhaps the biggest benefit from the web service point of view is having users that are more willing to user your service. I agree with FryGuy that I would never type in my twitter/Google password on another site. I do know that I am MUCH more likely to sign up for a web app, try a site out if I can just log in with my Google account. I think as web security/privacy become more 'top of mind' for more users (including the lay user), OAuth will become increasingly attractive.

Justin  2010-06-12 00:30:10
A: 

Not writing your own login system is beneficial because You're Probably Storing Passwords Incorrectly and asking for the user to "Please Give Us Your Email Password" is wrong - and teaches user bad habits.

LeguRi  2010-06-12 01:49:37
A: 

Wouldn't it be easier to ask the user to provide their twitter or facebook login and use that to pull the user's twitter or facebook data?

Until they change their Twitter/Facebook password. This is one of the major things OAuth solves - your access is not tied to their current username/password combination, so they're free to change it without having to update a couple dozen external apps.

ceejayoz  2010-06-12 03:12:08

related questions

How to become a better programmer?
Is it ethical/legal to bring your favorite code with you after a job?
What are your weakness points?
How to Crack Google?
Maven or Ant?
How to get prepared for an interview?
What else does one need on top of programming skills to be a good Technical Lead?
Why has XSLT never seen the popularity of many other languages that came out during the internet boom?
Common comment tags
Should my C# .NET team migrate to Windows Presentation Foundation?
The best way to make a new site known?
How to remain employable in the face of constant technological change
Are there benefits to Classic ASP over ASP.net
How to improve problem solving skills?
What programs should I write to truly experience this fancy new language ?
Feasability of GPU as a CPU?
What is the best way to learn recursion?
Do you consider your job evil/neutral/good ?
What "already invented" algorithm did you invent?
Best IDE's for different programming languages
Programmer’s block
Dual vs. Quadcore on a Webserver
SQLite vs MySQL
A little diversion into floating point (im)precision, part 1
Should I learn C?