August 10, 2012
OAuth is becoming a very popular way to control authorized access to Web APIs and the data that they return. Although it's one of the most straightforward ways to accomplish this, it's still rather confusing to use. If your API uses OAuth, then you need to be able to describe it so that developers can quickly understand what they need to do.
Google has announced some new features available for its OpenID API. As some of our readers may remember, earlier this year Google released a "Hybrid Protocol" API that combines an OpenID federated login with OAuth access authorization. The API has been enhanced with some extended Attribute Exchange fields and a pop-up user interface for the user-facing approval page.
Despite the popularity of micro blogging, instant messaging and social networks, email still plays a huge role in communicating across the internet. This fact is not lost on the big players, who are actively looking for ways to add value to their email services. We have already reported on some changes Google have made to Gmail by implementing the OAuth protocol to make it more open and secure for external access, but it seems that Yahoo beat them to the post, who have also implemented OAuth for their Yahoo Mail API.