homepage Welcome to WebmasterWorld Guest from 54.196.201.253
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Visit PubCon.com
Home / Forums Index / Yahoo / Yahoo Corporate
Forum Library, Charter, Moderator: open

Yahoo Corporate Forum

    
Yahoo API OAuth Potential Security Issue
engine




msg:3898778
 4:51 pm on Apr 23, 2009 (gmt 0)

Yahoo API OAuth Potential Security Issue [developer.yahoo.net]
As you may know, several Yahoo! APIs use OAuth, an open standard that lets users give a service permission to access the information they’ve stored with a third-party website without exposing their password and account information. The Yahoo! APIs that leverage OAuth include our Y!OS Social Directory, Contacts, Status, and Updates APIs, as well as Fire Eagle.

Recently, the folks at OAuth let us know about a potential security issue within the protocol. At Yahoo! we take the security and privacy of our users very seriously, and so for the time being we’ve disabled the ability for users to authorize new applications via OAuth. Applications that have already been authorized will not be affected.

We recognize the impact this has on you as developers and appreciate your patience. We’re continuing to evaluate the best way to move forward and are actively working with the OAuth community to resolve the issue.


 

AhmedF




msg:3899090
 10:21 pm on Apr 23, 2009 (gmt 0)

And this is why Twitter also disabled it?

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Yahoo / Yahoo Corporate
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved