Comments (7)
Is your browser set up to allow cross domain requests? Most browsers by default will prevent this.
from jsoauth.
That is an interesting thought. An example that requests a PIN works on Safari but not Firefox, although I did test other HTTP request on Firefox, like to the bitly API so I would assume the cross domain permissions are not an issue. As far as you are concerned, has this been tested on all common browsers?
from jsoauth.
Absolutely not. jsOAuth in the browser is completely untested. This is down to the security imposed on browsers. The test suite was writen to work in chrome with all security turned off purely out of convenience.
I'm very surprised that Safari worked and Firefox didn't.
You mention that you are attempting to use bitly which uses OAuth 2.0 which isn't supported in jsOAuth at the moment.
from jsoauth.
I see. So basically are you saying it is not a good idea to use oauth with javascript and that you should really do this server side? I'm just wondering how Facebook javascript client does this, I mean it's definitely JavaScript yet it works fine.
Regarding bitly, I was only trying REST requests without oauth.
from jsoauth.
No I'm saying in the browser it's not advised. Facebook uses OAuth 2.0 and probably has CORS support.
from jsoauth.
Ok, well thanks for your help. I need to have this implemented by Tuesday so will try the JavaScript way for now.
from jsoauth.
It worked in Safari because if you open a local .html
file the browser switches to a kind of "dashboard widgets dev mode" and disables Same Origin Policy
from jsoauth.
Related Issues (20)
- OAuth 2.0 Support HOT 11
- postJSON - Content-Type: 'application/json' HOT 4
- Support streaming responses HOT 11
- jsOAuth and LinkedIn HOT 3
- Using requirejs breaks jsOAuth HOT 3
- encodable query params are double percent encoded HOT 2
- QueryString.setQueryParams doesn't decode query values HOT 3
- 1.3.6 error HOT 1
- Uncaught ReferenceError: netscape is not defined HOT 3
- Making life simpler: Chrome iOS-Simulator App HOT 1
- Error auth Appelerator sdk version >=2
- Missing onerror callback for Titanium HTTPClient
- Unexpected OAuth.urlDecode behavior HOT 3
- urlEncode method does not encode the tab character
- jsOAuth - Backbone.js HOT 4
- Make package installable using bower HOT 3
- It's not possible to make GET requests with two query parameters having the same name HOT 3
- Twitter 401 Unauthorized for get/post methods after access_token is saved HOT 6
- phonegap error, netscape is not defined HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jsoauth.