add login via google, facebook, yahoo or live using azure mobile services
DESCRIPTION
Talk for Bay.Net (San Francisco) June 18th, 2014 http://www.meetup.com/BayNET/events/185540132/ Avoid all the security issues of maintaining your own password storage and authentication with or without having your web site hosted on Azure. That is, allow your users to be able to login to your site by authenticating with Google, Facebook, Yahoo or Windows Live authorization services. In this presentation, I’ll show you how, with Azure Mobile Services and very simple API calls you can create that authentication.TRANSCRIPT
Peter Kellner
•Microsoft MVP 7 Years
•Silicon Valley Code Camp Organizer
•Pluralsight Author
•Independent
Add Login via Google,
Facebook, Yahoo or LIVE using Azure Mobile
Services
PLEASE LOGIN TOW.SVCC.MOBI
alias for www.siliconvalley-codecamp.com
SVCC Walk Through
Problems?
• User Logs In Without First Linking
•Multiple Accounts (me!)
• Cookies?
IDENTITY BASICS• I’m struggling to understand how to integrate these
oauth providers into my sites. If all we get back is a token with no other identifiable information, how does this help us? It seems that all we are getting is the ability for a bad guy to consistently identify himself to us with no other way of telling who he is. Just, “same old bad guy is back”.
Yes, that’s pretty much OAuth in a nutshell. You get a consistent identifier per user. The format of that identifier is up to the provider. You may, or may not, get additional information, in the token, or via a side channel.
UNIQUE NUMBER UNIQUE?
• My APP
• Your APP
• SAME UNIQUE NUMBER?
INFORMATION FLOW
Issue Request To Identity Provider
Get Back Big Number String
What is Azure Mobile Services?
•Web Site? (NO!)
•Tables, Blobs, Queues, Auth
Portal Run ThroughCreating Azure Mobile
ServiceWith Identities
Windows Azure Portal
Azure Mobile Services Setup
Azure Mobile Services Setup
Azure Mobile Services Setup
Azure Mobile Services Setup
Azure Mobile Services Setup
Azure Mobile Services Setup
Azure Mobile Services Setup
Creating Apps
Creating Apps
No Help From Sample App
http://msdn.microsoft.com/en-us/library/azure/jj710105.aspx
Service-Directed Login
Code Time!
• Demo TestOAuth.html
Service-Directed Login
Service-Directed Login
Service-Directed Login
Service-Directed Login
Client-Directed Login
If your app doesn’t need to interact directly with the identity provider, you can instead use the Service-directed login operation
SVCC Implementation
Extended OAuth Info
http://blogs.msdn.com/b/carlosfigueira/archive/2013/12/12/expanded-login-scopes-in-azure-mobile-services.aspx
Carlos Figueira Blog
NodeJS Discussion
• Azure Mobile Service Integration
• Requires
• GIT
Azure Mobile Service API Calls