search

kahmali / meteor-restivus

REST APIs for the Best of Us! - A Meteor 0.9+ package for building REST APIs https://atmospherejs.com/nimble/restivus
MIT License
544 stars 116 forks source link

OAuth2 Server #134

Open awatson1978 opened 9 years ago

awatson1978 commented 9 years ago

Ooof. Just landed in Santa Cruz (yay!), and am looking at the Argonaut Sprint 2, and it involves a basic OAuth2 implementation.

I'm considering creating an Atmosphere wrapper for the oauth2-server package, and then adding it to the hl7-argonaut-fhir package.

Any discussion, comments, recommendations, or thoughts would be much appreciated. @kahmali? @stubailo?

kahmali commented 9 years ago

Hi Abigail,

I'm so sorry for the delayed response on this. I've been swamped with work while gearing up for my first ever MVP launch (a meteor app by the name of NimbleNotes). I'm barely finding time to eat and sleep nowadays.

I wish I had time to give this some proper thought. I'll try my best to find some time this weekend. In the meantime, I do agree that wrapping the node oath2-server package is a solid starting point. I'm sure there's a nice pattern for adding this type of functionality to Restivus and simple:rest (maybe using middleware), but that's what I'll need a bit more time to reason about.

In addition to Sashko, maybe @aldeed has some thoughts on this. He's continuing work on simple:rest, and I know he's familiar with oauth2, so maybe he's thought about this some already?

I'll try my best to think through this some more and see if there's anything I can do in Restivus or simple:rest to make this easier on you. Sorry I can't be more helpful on this just yet.

awatson1978 commented 9 years ago

Okay, so I've been in contact with someone over at Furore.com, who are also building an OAuth2 server to connect to Mongo (using Express, I think).

http://spark.furore.com/ http://fhir.furore.com/Tooling http://sparkblog.emc.com/tag/hl7/

They've recommended oauth2orize NPM package, which they're currently using. https://www.npmjs.com/package/oauth2orize

Thanks for leaving this issue open. We are, in fact, doing research, and slowing moving forward with it.

jakobloekke commented 9 years ago

Hi guys,

Have you had time to look into this more? I'm just starting to implement oauth for my current meteor-project and would really like your input.

vangorra commented 8 years ago

My company, Prime8Consulting published an oauh2 client/server package for meteor almost a month ago. It lots of documentation and example applications that demonstrate how it works.

https://github.com/prime-8-consulting/meteor-oauth2

We are excited to get feedback, both positive and negative.