Goodreads Developers discussion
examples / showcase
>
Wordpress single-sign on and PHP support for OAuth
date
newest »
newest »
Thanks Ettore!One thing is to be desired though.
It would be nice if it was possible to edit access rights for the application, the way Twitter and others do.
For the single sign-on, the only thing I need is auth.user API call or in the future any other ReadOnly calls that still require OAuth.
This authorization screen will scare some users away:
I'd love to have different sets of permissions for our oauth stuff, but it's a bit of extra work beyond the boolean (access/no access) we have now.Someday I can see us adding this, but probably not too soon.
The line by line authorization would be nice, but I agree, it's too much work. I imagine it would require changes to several screens plus database access and who knows what else.What I was referring to, was to add a per application flag: Read-only or Read-write. Most of the changes would be on the backend and to the developer page where you create an app.
Access type could be baked-in into the application ID - no extra storage required.
If someone wants two different apps, one read-only, and the other one read-write, they will have to create two users and two apps.
Other changes would be per-call checks if this application is allowed to make this call or not.
One final change (the only client facing one) would be to this screen above to either display "access your profile data" or both profile data and "add and update book reviews".
Obviously, this is just a perfectionist speaking in me. I can live with this the way it is and I'm sure so will another poor sap integrating this into their site... :)
That approach might work well also. If we start to do this, I'll post a message about it in this forum (probably not happening too soon).
Thanks.I put together a short guide on how to get this to work. You have my permission to put it on your site, if you wish to do so.
http://patanvil.com/goodreads-sso/
Thanks,
Pat
HybridAuth creator was kind enough to include support for Goodreads API into his package.http://hybridauth.sourceforge.net/userguide/IDProvider_info_Goodreads.html
It could be downloaded from github at https://github.com/hybridauth/hybridauth but soon will posted on his main page as well and I imagine will be included into Wordpress SSO.
By the way I don't think I mentioned that you can call any OAuth api with it. It doesn't have to be for single sign on.
Goodreads SSO is finally bundled with WordPress Social Login plugin.http://wordpress.org/extend/plugins/w...
Here it the screen shot:
I submitted my changes to the project http://hybridauth.sourceforge.net/ If it gets added to the main source code it will be available for Wordpress through this plug-in: http://wordpress.org/extend/plugins/wordpress-social-login/.
Meanwhile if someone wants it, they can message me, and I will email them a zip file.
Here it is in action: http://patanvil.com