| Attributes | Values |
|---|
| type
| |
| Date Created
| |
| Date Modified
| |
| label
| |
| maker
| |
| Title
| |
| isDescribedUsing
| |
| has creator
| |
| content
| - %VOSWARNING%
%META:TOPICPARENT{name="OAuth"}%
%TOC%
---+ OAuth server
---++ General
The [[OAuth]] protocol enables web services consumers to access protected resources
via an API without requiring users to supply the service credentials to the consumers.
It's a generic methodology for unobtrusive, wire protocol level authenticated data access over HTTP.
---++ API
Virtuoso implements the OAuth Core 1.0 specification, and exposes the following API
endpoints:
---+++ Request token
<b>Endpoint:</b> <code><nowiki>http://server-cname/OAuth/request_token</nowiki></code>
<b>Parameters</b>
* <b><code><nowiki>oauth_consumer_key</nowiki></code></b> — The Consumer Key.
* <b><code><nowiki>oauth_signature_method</nowiki></code></b> — The signature method the Consumer used to
sign the request.
* <b><code><nowiki>oauth_signature</nowiki></code></b> — The signature as defined in Signing Requests
(Signing Requests).
* <b><code><nowiki>oauth_timestamp</nowiki></code></b> — As defined in Nonce and Timestamp (Nonce and
Timestamp).
* <b><code><nowiki>oauth_nonce</nowiki></code></b> — As defined in Nonce and Timestamp (Nonce and
Timestamp).
* <b><code><nowiki>oauth_version</nowiki></code></b> — OPTIONAL. If present, value MUST be 1.0 .
---++++ Example
<b>Request:</b>
<verbatim>
http://localhost:8890/OAuth/request_token?oauth_version=1.0&oauth_nonce
=dad4cb071e2169cbcaa051d404ac61a3&oauth_timestamp=1201873644&oauth_cons
umer_key=f756023be5ff1f20881cf8fe398069f3976b2304&oauth_signature_metho
d=HMAC-SHA1&oauth_signature=z76k5fQ0msFsQzCmhO%2FJZ329ZUE%3D
</verbatim>
<i><b>Note:</b> all long lines in example texts are split, i.e., the <code>GET</code> request is single line.</i>
<b>Response:</b>
<verbatim>
oauth_token=b4e22daa117b0bebf60ab6ba6e401edc7addd78c&oauth_token_secret
=4de6e3ab17553a0a385ebf6a3b4dd30f
</verbatim>
---+++ Authorization
<b>Endpoint:</b> <code><nowiki>http://server-cname/OAuth/authorize</nowiki></code>
<b>Parameters:</b>
* <b><code>oauth_token</code></b> — The Request Token obtained in the previous step. The current implementation
of the Service Provider declare this parameter as REQUIRED.
* <b><code>oauth_callback</code></b> — OPTIONAL. The Consumer MAY specify a URL the Service Provider will use
to redirect the User back to the Consumer when Obtaining User Authorization (Obtaining User
Authorization) is complete.
---++++ Example
<b>Request:</b>
<verbatim>
http://localhost:8890/OAuth/authorize?oauth_token=b4e22daa117b0bebf60ab
6ba6e401edc7addd78c&oauth_callback=http%3A%2F%2Flocalhost%3A8890%2Foaut
h%2Fexample%2Fclient.php%3Fkey%3Df756023be5ff1f20881cf8fe398069f3976b23
04%26secret%3Dcc249bfb732039d8ecba9e4f94fdead7%26token%3Db4e22daa117b0b
ebf60ab6ba6e401edc7addd78c%26token_secret%3D4de6e3ab17553a0a385ebf6a3b4
dd30f%26endpoint%3Dhttp%253A%252F%252Flocalhost%253A8890%252FOAuth%252F
authorize
</verbatim>
The User will be asked via web page to accept or decline the token.
---+++ Access token
<b>Endpoint:</b> <code><nowiki>http://server-cname/OAuth/access_token</nowiki></code>
<b>Parameters:</b>
* <b><code><nowiki>oauth_consumer_key</nowiki></code></b> — The Consumer Key.
* <b><code><nowiki>oauth_token</nowiki></code></b> — The Request Token obtained previously.
* <b><code><nowiki>oauth_signature_method</nowiki></code></b> — The signature method the Consumer used
to sign the request.
* <b><code><nowiki>oauth_signature</nowiki></code></b> — The signature as defined in Signing Requests
(Signing Requests).
* <b><code><nowiki>oauth_timestamp</nowiki></code></b> — As defined in Nonce and Timestamp (Nonce and
Timestamp).
* <b><code><nowiki>oauth_nonce</nowiki></code></b> — As defined in Nonce and Timestamp (Nonce and
Timestamp).
* <b><code><nowiki>oauth_version</nowiki></code></b> — OPTIONAL. If present, value MUST be 1.0 .
---++++ Example
<b>Request:</b>
<verbatim>
http://localhost:8890/OAuth/access_token?oauth_version=1.0&oauth_nonce=
8ad75091a66bdd741472be42149c828e&oauth_timestamp=1201873800&oauth_consu
mer_key=f756023be5ff1f20881cf8fe398069f3976b2304&oauth_token=b4e22daa11
7b0bebf60ab6ba6e401edc7addd78c&oauth_signature_method=HMAC-SHA1&oauth_s
ignature=tCxy0Lod4%2Bp%2FCBPV7Ph7RrsHXe4%3D
</verbatim>
<b>Response:</b>
<verbatim>
oauth_token=8c03b3da93480ca4728cc1194d6d03962f3bb5bb&oauth_token_secret
=854fd29c00adcedff4fbeaeb96584911
</verbatim>
In addition to the endpoints, it defines an API for PL applications to check authentication:
---+++ Authentication verification
<verbatim>
OAUTH.DBA.check_authentication (in params any, in lines any)
</verbatim>
<b>Parameters:</b>
* <b>params</b> — an array of strings representing the HTTP parameters
* <b>lines</b> — an array of HTTP request headers
<b>Result:</b>
* on success, it returns integer 1.
* on failure, it signals an SQL error.
---++++Sample code
A sample service (<code>oauth.vsp</code>):
<verbatim>
<html>
<body>
<?vsp
OAUTH..check_authentication (params, lines);
?>
An OAuth testing page
</body>
</html>
</verbatim>
---++++Sample request
<verbatim>
http://localhost:8890/admin/oauth.vsp?oauth_version=1.0&oauth_nonce=d57
640869b994b2d51bf9800229c4997&oauth_timestamp=1201873935&oauth_consumer
_key=f756023be5ff1f20881cf8fe398069f3976b2304&oauth_token=8c03b3da93480
ca4728cc1194d6d03962f3bb5bb&oauth_signature_method=HMAC-SHA1&oauth_sign
ature=X3K4lr9bJVz5YLnnyJDkykQZivY%3D
</verbatim>
---++++Sample response
<verbatim>
<html>
<body>
An OAuth testing page
</body>
</html>
</verbatim>
---++References
* [[OAuth][OpenLink's explanation of OAuth]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtOAuthControllers][Using OAuth with ODS]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtuosoOdsUbiquity][ODS Ubiquity Commands]]
* [[VirtOAuth][Virtuoso OAuth Implementation]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtuosoOdsControllers][ODS Controllers]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtODSOAuthQA][Testing Virtuoso OAuth with 3rd Party OAuth Clients]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtuosoOdsUbiquityTutorialsOAuth][OAuth Ubiquity Tutorial]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtOAuthTestTool][Virtuoso OAuth Test Tool for ODS Controllers]]
* [[VirtOAuthSPARQL][Virtuoso SPARQL OAuth Tutorial]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtuosoOdsUbiquityTutorials][ODS Ubiquity Tutorials]]
* [[http://ods.openlinksw.com/dataspace/dav/wiki/ODS/VirtOAuthExamples][OAuth Applications Authentication examples]]
* [[http://oauth.net/core/1.0/][OAuth API]]
* [[VirtAuthServerUI][Virtuoso Authentication Server UI]]
CategoryVirtuoso CategoryODS CategoryOAuth CategoryVOS CategoryDocumentation
|
| id
| - cc7f0481ff60662d36220e25d5260d71
|
| link
| |
| has container
| |
| http://rdfs.org/si...ices#has_services
| |
| atom:title
| |
| links to
| |
| atom:source
| |
| atom:author
| |
| atom:published
| |
| atom:updated
| |
| topic
| |
| is made
of | |
| is container of
of | |
| is link
of | |
| is http://rdfs.org/si...vices#services_of
of | |
| is links to
of | |
| is creator of
of | |
| is atom:entry
of | |
| is atom:contains
of | |
![[RDF Data]](/fct/images/sw-rdf-blue.png)
![[cxml]](/fct/images/cxml_doc.png)
![[csv]](/fct/images/csv_doc.png)
![[text]](/fct/images/ntriples_doc.png)
![[turtle]](/fct/images/n3turtle_doc.png)
![[ld+json]](/fct/images/jsonld_doc.png)
![[rdf+json]](/fct/images/json_doc.png)
![[rdf+xml]](/fct/images/xml_doc.png)
![[atom+xml]](/fct/images/atom_doc.png)
![[html]](/fct/images/html_doc.png)