I've been wondering why the various apps that use the OAuth plugin for authentication always need reauthorising by the user. This is annoying for those that simply need the authentication mechanism.
Unfortunately, the way to avoid the reauthorisation depends on the provider. So for Twitter, you need to use the /authenticate URL rather than the /authorize one. For Google you need to ensure that the parameter approval_prompt=auto is set. I don't know what the requirement is for Facebook.
I'm not clear how this could be added to the plugin, but I do wonder whether we need a façade over Scribe and a configuration option along the lines of authenticateOnly=true.
I've been wondering why the various apps that use the OAuth plugin for authentication always need reauthorising by the user. This is annoying for those that simply need the authentication mechanism.
Unfortunately, the way to avoid the reauthorisation depends on the provider. So for Twitter, you need to use the /authenticate URL rather than the /authorize one. For Google you need to ensure that the parameter
approval_prompt=autois set. I don't know what the requirement is for Facebook.I'm not clear how this could be added to the plugin, but I do wonder whether we need a façade over Scribe and a configuration option along the lines of
authenticateOnly=true.