+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Using CodeIgniter (https://forum.codeigniter.com/forumdisplay.php?fid=5)
+--- Forum: General Help (https://forum.codeigniter.com/forumdisplay.php?fid=24)
+--- Thread: Login with oAuth (/showthread.php?tid=70134)
Login with oAuth - omid_student - 02-25-2018
Hello guys
I come back again
My question is :
Can i use token oAuth2 instead of user's login to app?
Example:
Use login to app
If he/she can login to app,so create token with oauth and return to app and app send token for user command
RE: Login with oAuth - InsiteFX - 02-26-2018
If the user logins into Twitter or Facebook etc: From your login screen
then yes you can login them into the app, you will get an error if Twitter
or Facebook cannot log them in.
So if the Twitter or Facebook logs in ok! Then you know you can log them into
your system.
RE: Login with oAuth - omid_student - 02-26-2018
(02-26-2018, 06:20 AM)InsiteFX Wrote: If the user logins into Twitter or Facebook etc: From your login screen
then yes you can login them into the app, you will get an error if Twitter
or Facebook cannot log them in.
So if the Twitter or Facebook logs in ok! Then you know you can log them into
your system.
I dont use facebook or twitter
I want to use this authorize in app only and dont use other token for validate user
Thanks
RE: Login with oAuth - InsiteFX - 02-27-2018
Well if you are sure that the users token is valid they you could encrypt it to the database
and use it for logging the user in.
But watch out for security leaks in your code...
RE: Login with oAuth - omid_student - 02-27-2018
(02-27-2018, 04:22 AM)InsiteFX Wrote: Well if you are sure that the users token is valid they you could encrypt it to the database
and use it for logging the user in.
But watch out for security leaks in your code...
It is good so
Do auth have leaks?
RE: Login with oAuth - InsiteFX - 02-28-2018
I would just do checks to make sure there is no way for cross site forgery.
Check your inputs and make sure you are getting what you are expecting to get.
RE: Login with oAuth - omid_student - 02-28-2018
(02-28-2018, 04:21 AM)InsiteFX Wrote: I would just do checks to make sure there is no way for cross site forgery.
Check your inputs and make sure you are getting what you are expecting to get.
Thanks