OAuth Scopes with UMA Action URLs

Fri, 20 May 2011 22:02:00 +0100

In a recent South Park episode, Kyle is kidnapped and subjected to product prototyping (made of people) by employees of a large, cult-like tech company who explain that it is all justified: Kyle failed to read the complex terms and conditions he agreed to. Unfortunately, the risks of consenting to the agreement were not clear to Kyle.

There is a new hope. Earlier this week, Twitter announced more precise controls over permissions granted to third parties. Twitter wants to make the risks of consent more clear. Access to your direct messages should be on a need-to-know basis. Twitter says that by mid-June, when you grant a third-party permission to your twitter account, it will no longer be able to access your direct messages unless you have explicitly granted that particular type of access.

A simpler alternative to rel-payment

Thu, 17 Jun 2010 02:16:00 +0100

The previous screencast may have tried to use too much technology to enable user-centric simple web payments.

After looking around some, it occurred to me that the rel-payment microformat is not sweeping the world wide web. Using the Internet Archives, I found a blog post from July 2005 that announced support for rel-payment on blip.tv. I’m guessing not many people used this before it was abandoned.

An alternative to rel-payment is to simply use a convention. For instance, the path /blog is a convention to quickly find the blog for a site. On Twitter, this would normally represent the person with the Twitter handle “blog” but Twitter follows the convention and redirects to blog.twitter.com.

Payments on Open Source Currency

OAuth Scopes with UMA Action URLs

A simpler alternative to rel-payment