I am running the oauth-plugin pretty well in my OAuth server.
Here comes up a question. Now my application is doing the authentication (via OpenID) and authorization (via OAuth) for the incoming requests from remote consumer servers, and then also supplies the resource data (json, xml, picture, etc) if the access_token is valid.
I'd like to split the functions, so that my new "auth-application" will only handle user authentication and resource request authorization (request a OAuth access_token). After that, I use a new "resource-application" to response the detailed resource requests (use of the obtained access_token).
Has anyone tried that before, how should I proceed the re-factoring? My current approach is quite similar with the following tutorial:
https://github.com/Gazler/Oauth2-Tutorial
Dear all,
I am running the oauth-plugin pretty well in my OAuth server.
Here comes up a question. Now my application is doing the authentication (via OpenID) and authorization (via OAuth) for the incoming requests from remote consumer servers, and then also supplies the resource data (json, xml, picture, etc) if the access_token is valid.
I'd like to split the functions, so that my new "auth-application" will only handle user authentication and resource request authorization (request a OAuth access_token). After that, I use a new "resource-application" to response the detailed resource requests (use of the obtained access_token).
Has anyone tried that before, how should I proceed the re-factoring? My current approach is quite similar with the following tutorial: https://github.com/Gazler/Oauth2-Tutorial
Thanks in advance!