Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/tiziano88/elm-oauth
OAuth client for elm
https://github.com/tiziano88/elm-oauth
elm oauth oauth-client oauth2
Last synced: 2 months ago
JSON representation
OAuth client for elm
- Host: GitHub
- URL: https://github.com/tiziano88/elm-oauth
- Owner: tiziano88
- License: mit
- Created: 2016-07-19T22:38:55.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2017-01-17T17:37:24.000Z (almost 8 years ago)
- Last Synced: 2024-10-01T09:19:48.495Z (3 months ago)
- Topics: elm, oauth, oauth-client, oauth2
- Language: Elm
- Homepage: http://package.elm-lang.org/packages/tiziano88/elm-oauth/latest
- Size: 24.4 KB
- Stars: 16
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# elm-oauth
An OAuth client for elm.
Notes:
- Only Implicit OAuth 2.0 web-based flow (no client secret) is supported.
- Refreshing tokens is not supported (this is only available in the
Authorization Code flow, which requires the cooperation of a server and cannot
be implemented purely client-side).
- Tokens normally expire after one hour (actual length depends on the provider
used).
- Authenticating requires navigating to a URL on a different domain, and that is
only possible by letting the user click on a plain HTML link
(``); this means that the browser will navigate to a different
page and the current state of the application will be lost.
- Passing a state (or nonce) to the authentication request in order to prevent
request forgery attacks is not supported (this is because it is not possible
to keep such generated state in memory and verify it after the authentication
callback, since the application is restarted in the meanwhile and all its
state is lost).See also:
- https://tools.ietf.org/html/rfc6749
- https://www.digitalocean.com/community/tutorials/an-introduction-to-oauth-2
- http://oauthbible.com/#oauth-2-two-legged