Home > Developer > Mobile Develop

IOS OAuth2.0 authentication and SSO licensing

Source: Internet
Author: User
Tags ticket
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

OAuth2.0 and SSO authorization

I. OAUTH2.0 licensing Agreement

A secure landing protocol, the user submitted an account password is not submitted to the app, but submitted to the authorization server, after the confirmation of the server, return to the app an access token, the app can use the access token to access resource server resources. Because the user's account password does not interact directly with the app, it is safe to interact with the official server.

Icon:

Process:

1. Obtain an unauthorized request Token.

Url:request token URL.

Param:appkey/appsecret, Signature method/signature (e.g. HMAC-SHA1), TimeStamp (timestamp: Number of seconds from 1970/0/0/0/0/0), nonce (randomly generated string, prevents duplicate request)

Response:oauth_token/oauth_secret

2. Obtain user-authorized request Token.

Url:user authorizition URL.

Param:oauth_token (token returned in the previous step), Callback_url (address returned after authorization succeeded)

Response:oauth_token (token that is authorized or rejected by the user)

3, with the authorized request token in exchange for Accesstoken.

Url:access token URL.

Param:appkey,oauth_token (token returned by last step), signature, timestamp,nonce

Response:access_token/secret

Second, SSO licensing technology

Full Name: Single Sign on, users can access mutual trust subsystem only once. User access to the System 1 o'clock, after the successful login will return a ticket, when the user access to the System 2 o'clock, will bring ticket, to be verified after the legal access to the System 2. Sounds like a cookie, yes, Web-sso has a cookie-based implementation.

Sina Weibo, for example, many mobile apps when clicking on Sina licensing, will jump to the Sina Client landing page, where the use of SSO technology. When the app authorizes Sina Weibo, it detects if the mobile phone has a Sina Weibo client installed, and if it does not, it will be transferred to Weibo's web version.

[[Uiapplicationsharedapplication] openurl:xxx] can open another app. Here Sinaweibosso://login is the URL of the client and passes three parameters, Appkey,redirecturi,ssocallbackscheme.

Ssocallbackscheme is the URL address of the app that is returned, that is, your own defined Sinaweibosso.appkey.

Once the login is successful, the client will return the Accesstoken directly to the app and complete the authorization.

IOS OAuth2.0 authentication and SSO licensing

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
basic and digest authentication php authentication and authorization authentication required username and password authentication authorization and accounting aaa authentication and authorization interview questions multiplayer games for android and ios php key generation and authentication class

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More