[SECOAUTH-8] authentication provider using OAuth #106
Description
Priority: Minor
Original Assignee: Ryan Heaton
Reporter: Ryan Heaton
Created At: Sat, 9 Oct 2010 00:22:34 +0100
Last Updated on Jira: Thu, 5 Apr 2012 13:25:28 +0100
Attachments (unavailable): 0001-Add-support-classes-for-using-an-OAuth-provider-as-a.patch
This patch adds support for using OAuth as an authentication mechanism in an application (acting as an OAuth consumer). It contains implementations of an AuthenticationProvider, an AuthenticationProcessingFilter and some helper classes.
Implementing applications should provide UserDetailsService implementations for retrieving user information from the OAuth provider, and for mapping those user details to an application principal. The patch includes base classes for such implementations.
We have used this code to provide user authentication using Twitter and LinkedIn in a Grails application.
About the OAuthProcessingFilter: it is a small extension of OAuthConsumerProcessingFilter which could well be folded into the base class, instead of subclassing.