homepage Welcome to WebmasterWorld Guest from
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / Yahoo / Yahoo Corporate
Forum Library, Charter, Moderator: open

Yahoo Corporate Forum

Yahoo API OAuth Potential Security Issue

WebmasterWorld Administrator engine us a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month

Msg#: 3898776 posted 4:51 pm on Apr 23, 2009 (gmt 0)

Yahoo API OAuth Potential Security Issue [developer.yahoo.net]
As you may know, several Yahoo! APIs use OAuth, an open standard that lets users give a service permission to access the information they’ve stored with a third-party website without exposing their password and account information. The Yahoo! APIs that leverage OAuth include our Y!OS Social Directory, Contacts, Status, and Updates APIs, as well as Fire Eagle.

Recently, the folks at OAuth let us know about a potential security issue within the protocol. At Yahoo! we take the security and privacy of our users very seriously, and so for the time being we’ve disabled the ability for users to authorize new applications via OAuth. Applications that have already been authorized will not be affected.

We recognize the impact this has on you as developers and appreciate your patience. We’re continuing to evaluate the best way to move forward and are actively working with the OAuth community to resolve the issue.



10+ Year Member

Msg#: 3898776 posted 10:21 pm on Apr 23, 2009 (gmt 0)

And this is why Twitter also disabled it?

Global Options:
 top home search open messages active posts  

Home / Forums Index / Yahoo / Yahoo Corporate
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved