The Perpetual, Invisible Window Into Your Gmail Inbox - Waxy.org
Andy sounds a cautionary note: the password anti-pattern may be dying, but OAuth permission-granting shouldn’t be blasé. This is why granular permissions are so important.
Tags: oauth
Clean up ALL Your Applications Privacy Settings in 2 Minutes
A one-stop-shop with links to the authentication settings of various online services. Take the time to do a little Spring cleaning.
Developing the OAuth user experience at Twitter
Ben documents the improvements in Twitter’s OAuth flow. Maybe this will help to stop people blindly giving permission to dodgy third-party sites to update their Twitter stream.
Liminal Existence: Identity
Blaine outlines the vision for Webfinger.
EagleTweet
Allow your Twitter location to be automatically updated from FireEagle. The process of connecting you, FireEagle, and Twitter is beautiful: 1 x OpenID + 2 x OAuth.
Experiments in Data Portability - Screencast
Glenn has created a screencast of his superb Skillswap presentation, syncing up the audio with the slides.
The OpenID and OAuth Flow: Playing with UX · Ben Ward
A thoughtful post from Ben on how the flow of OAuth, OpenID and Facebook Connect can be improved.
FatBusinessman.com : On Authentication
David has written an excellent comparison of the two differing mindsets when approaching online authentication. In no uncertain terms, OAuth (or an OAuth style authentication) is right and the password anti-pattern is wrong, wrong, wrong.
Facebook Security Advice: Never Ever Enter Your Passwords On Another Site, Unless We Ask You To
I never thought I'd find myself linking to and agreeing with a post on TechC*nt but it's good to see somebody pointing out Facebook's hypocrisy with using the password anti-pattern.
Official Google Data APIs Blog: OAuth for Google Data APIs
All of Google's data APIs (Calendar, Blogger, Contacts, etc.) all now support OAuth. Excellent!
Coding Horror: Please Give Us Your Email Password
An excellent rant by Jeff Atwood that explains just why the password anti-pattern is such an abhorrent practice: "How did we end up in a world where it's even remotely acceptable to ask for someone's email credentials?"
OAuth support for Google Accounts and Contacts API - OAuth | Google Groups
As promised by Kevin Marks in the Q&A after my panel at South by Southwest, the Google Contacts API now supports OAuth. w00t!
4 Technologies for Portability in Social Networks: A Primer - ReadWriteWeb
A nice summary of the technologies presented at my SXSW panel.
disambiguity - » Design Ethics - Encouraging responsible behaviour
Leisa joins in on the password anti-pattern. As she says, this is a question of ethics. I've already made my position clear to my colleagues and clients. Have you?
Portable Social Networks: Take Your Friends with You [Content]
Brian's article on portable social networks is a clear and concise introduction to the subject with explanations of the technologies involved.
DataPortability.org - Share and remix data using open standards
A new site to track the building blocks of portable social networks: OpenID, OAuth, hCard, XFN and more.