AuthSub support in the .NET client library
January 18th, 2007 | Published in Google Code
The release of versions 1.0.9.0 and higher of the .NET client library for GData includes full support for the AuthSub method of authentication. AuthSub is our solution to provide secure authentication for web-based GData applications. AuthSub, or Authentication Proxy, allows a user to login to their Google account and grant permission for a third-party to access a specific service on their behalf without exposing their user credentials to the third-party. The user can also revoke access at any time.
With the addition of AuthSub authentication support, developers can now implement exciting .NET web applications which take full advantage of GData APIs. Using AuthSub is quite simple and only requires a few lines of code to implement. AuthSub developers can also utilize an extra layer of security by registering their application with Google and signing each of their requests to GData services. This takes a bit more effort for the developer, but is fully supported with the latest release of the .NET client library.
The typical AuthSub process goes like this:
We're looking forward to hearing about all the amazing .NET web applications and mashups the developer community produces! Feel free to post about them in the groups for the APIs you're using and if you would like your app to be considered as a featured project.
-Ryan Boyd, API Support Engineer
With the addition of AuthSub authentication support, developers can now implement exciting .NET web applications which take full advantage of GData APIs. Using AuthSub is quite simple and only requires a few lines of code to implement. AuthSub developers can also utilize an extra layer of security by registering their application with Google and signing each of their requests to GData services. This takes a bit more effort for the developer, but is fully supported with the latest release of the .NET client library.
The typical AuthSub process goes like this:
- User visits a web application for the first time
- Web application asks the user to click on a link to visit Google
- User authenticates their Google Account and authorizes the web application to access a particular service on their behalf
- User is redirected back to the web application with a single-use AuthSub token
- Web application exchanges single-use token for an AuthSub session token
- Web applications uses the AuthSub session token in requests to the GData service for which it was issued
We're looking forward to hearing about all the amazing .NET web applications and mashups the developer community produces! Feel free to post about them in the groups for the APIs you're using and if you would like your app to be considered as a featured project.
-Ryan Boyd, API Support Engineer