[OAUTH-WG] Grant Type to Login via another Provider's OAuth Token
Spencer MacDonald <spencer.macdonald.other@gmail.com> Sun, 12 April 2015 13:29 UTC
Return-Path: <spencer.macdonald.other@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 01D961ACCED for <oauth@ietfa.amsl.com>; Sun, 12 Apr 2015 06:29:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.701
X-Spam-Level:
X-Spam-Status: No, score=0.701 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z2WcVmPU5TvN for <oauth@ietfa.amsl.com>; Sun, 12 Apr 2015 06:29:16 -0700 (PDT)
Received: from mail-ig0-x235.google.com (mail-ig0-x235.google.com [IPv6:2607:f8b0:4001:c05::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A33F01ACCEC for <oauth@ietf.org>; Sun, 12 Apr 2015 06:29:16 -0700 (PDT)
Received: by iggg4 with SMTP id g4so27884040igg.0 for <oauth@ietf.org>; Sun, 12 Apr 2015 06:29:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=hHR+ElP3RomDnPVn34k4KoI8OvaAXZDz8e4/BnoxihA=; b=xz2vzeNVzN1wh1sXZE1jAFKUoZZyk6Pkv6Yu65cjp0xP/H6e827ZDoWrD7LmcFwRlI uPeS6m2kzsBmkmNhM/8YGeGruFnf0LH3q5xkV+m4dW0X0OqwcU4mefSBVR+sucSkkXXe 0pp1z9KKAUFar1+99DFxLcmgYwPPP0jQSrEs9BpwHa+c492B0XkW7EOBl0FP8MmOus4r kxY7FHflu68m2gYfPecwT5dfsCHfD8BAS4aDL8WBBFT66Rd2XZoOfRwxK6xkQK0ShQnM hpHHUDFjZznIc2vgssXdIF/4Xs05zGMH5F9a3/35HXn+aqaRCglxD/txA+noPgQk0vDN ZWLA==
MIME-Version: 1.0
X-Received: by 10.50.64.244 with SMTP id r20mr10354211igs.48.1428845356126; Sun, 12 Apr 2015 06:29:16 -0700 (PDT)
Received: by 10.50.131.233 with HTTP; Sun, 12 Apr 2015 06:29:16 -0700 (PDT)
Date: Sun, 12 Apr 2015 14:29:16 +0100
Message-ID: <CAJAGUngJ2_JWpWdrFovRYbt7E5645oUh3PbNG-_KeF79+XC1dg@mail.gmail.com>
From: Spencer MacDonald <spencer.macdonald.other@gmail.com>
To: oauth@ietf.org
Content-Type: multipart/alternative; boundary="047d7bea3d22e4191d051386fb6a"
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/rNcSuHhAR8hJ9Cj-6-MP64-lg4s>
Subject: [OAUTH-WG] Grant Type to Login via another Provider's OAuth Token
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 12 Apr 2015 13:29:18 -0000
Hi, I wondered if there was a best practise/standard/extension grant type for exchanging an OAuth Token from another provider (instead of a username and password) for an OAuth Token. The situation I am facing is that I am developing a native iOS application that makes use of the Facebook Graph API, whereby I fetch an OAuth Token using their native SDK on the device. I then want to login exchange their Facebook OAuth Token with my server (the OAuth Token is then used on the server to process data) in exchange for an OAuth Token to communicate with my server. Is there a best practise for this approach? Regards Spencer
- [OAUTH-WG] Grant Type to Login via another Provid… Spencer MacDonald
- Re: [OAUTH-WG] Grant Type to Login via another Pr… Nat Sakimura
- Re: [OAUTH-WG] Grant Type to Login via another Pr… Justin Richer