[jdev] Question on login through OAuth
stpeter at stpeter.im
Sat May 18 16:33:21 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
On 5/18/13 8:37 AM, Jonas Wielicki wrote:
> Hi Stefano,
> While there is no XEP explicitly supporting OAuth, there seem to
> be approaches for using OAuth with SASL, which is the default
> authentication mechanism for XMPP.
> So in principle, it should be possible to use OAuth, without
> hardcoding passwords etc.. However, there is probably no software
> out there yet supporting that. I'd suggest you take some web search
> on how to use OAuth with SASL and maybe implement/contribute to the
> standards which are currently in the making (I found some IETF
> draft for sasl+oauth,
It's currently in working group last call.
> and some github code by doing a simple web search). You'll probably
> also have to patch server software to support that, and in turn set
> up your own XMPP service for this to work.
Sounds right. Perhaps over time we'll see more XMPP servers, clients,
and libraries supporting it (once it becomes standardized at the IETF).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.19 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
-----END PGP SIGNATURE-----
More information about the JDev