OAuth的/ OpenID的 - 这我应该使用? [英] OAuth/OpenID - which should I use?
问题描述
我开发一个Android应用程序要求用户注册和登录到网站,然后使用该注册信息在一个Android应用程序。我应该使用OAuth和OpenID的或者是有更好的东西,使之不能,我开发一个一次性使用的认证系统的要求?
I am developing an Android application which requires users to register and log on to a website and then use that registration information in an Android app. Should I be using oauth or openid or is there something better to make it not a requirement that I develop a single-use authentication system?
推荐答案
的OpenID
如果你只是希望不存储在您的应用程序和用户数据与放大器之间交换的数据来验证你的Android应用程序用户;由第三方服务提供商管理(如谷歌的Flickr,Facebook的,...),那么OpenID的可能是你更好的选择。
If you're just looking to authenticate a user in your android app without exchanging data between your application and user data stored & managed by a third party service provider (like google,flickr,facebook,....), then OpenID might be the better option for you.
有一个基于Java的库应该叫 openid4java 在Android平台上了。
There is a java based library that should work on the Android platform called openid4java.
的OAuth
OAuth的,虽然工作流程的一部分涉及到对一个OAuth的服务供应商认证,是授权的部分更集中,因为它在很大程度上不知道底层的认证机制。
OAuth, although part of the workflow involves authenticating against an OAuth service provider, is more focussed on the authorization part, as it is to a large degree unaware of the underlying authentication mechanism.
如果你希望你的应用程序以代表用户(获取存储在支持OAuth的第三方用户数据),那么OAuth是一个有趣的选择。 OAuth是不能够取得的用户的身份的,它仅作为一个授权机构,所述已识别的用户。
If you want your application to act on the users behalf (to fetch user data stored at a third party that supports oauth), then OAuth is an interesting option. OAuth is not capable of acquiring the identity of the user, it merely acts as an authorization mechanism for an already identified user.
路标是一个基于Java的库在Android上的作品。
Signpost is a java based library that works on Android.
OpenID的连接
有关尝鲜,在地平线上另一个有趣的解决方案是开放ID连接,结合了最好的两个世界的。
For early adopters, another interesting solution on the horizon is Open ID connect, that combines the best of the 2 worlds.
看看更多的背景资料如下岗位。
Take a look at the following posts for more background info.
- <一个href="http://stackoverflow.com/questions/1087031/whats-the-difference-between-openid-and-oauth">What's OpenID和OAuth的区别呢?
- <一个href="http://softwareas.com/oauth-openid-youre-barking-up-the-wrong-tree-if-you-think-theyre-the-same-thing">http://softwareas.com/oauth-openid-youre-barking-up-the-wrong-tree-if-you-think-theyre-the-same-thing
- <一个href="http://thenextweb.com/socialmedia/2010/11/04/facebook-connect-oauth-and-openid-the-differences-and-the-future/">http://thenextweb.com/socialmedia/2010/11/04/facebook-connect-oauth-and-openid-the-differences-and-the-future/
- What's the difference between OpenID and OAuth?
- http://softwareas.com/oauth-openid-youre-barking-up-the-wrong-tree-if-you-think-theyre-the-same-thing
- http://thenextweb.com/socialmedia/2010/11/04/facebook-connect-oauth-and-openid-the-differences-and-the-future/
当然规格:
- http://openid.net/
- http://oauth.net/
这篇关于OAuth的/ OpenID的 - 这我应该使用?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
