Apps Developer Blog
Information for Google Apps Developers
New 3-Legged OAuth support for Google Apps Administrative APIs
September 28, 2010
Editor's Note:
This post was originally published on the
Google Enterprise Blog
. We decided to re-post it here as we think it'll be interesting to readers of the Google Apps Developer Blog.
Google Apps is designed to provide a secure and reliable platform for your data. Until today, Google Apps administrators had to sign requests for calls to Google Apps APIs using their username and password (this is called ClientLogin Authorization).
Yet sharing passwords across sites can pose security risks. Furthering our commitment to
make the cloud more secure
for our users, today we are pleased to announce support for OAuth authorization on Google Apps APIs.
There are several advantages to using OAuth instead of the username/password model:
OAuth is more secure: OAuth tokens can be scoped and set to expire by a certain date, making them more secure than using the ClientLogin mechanism.
OAuth is customizable: Using OAuth, you can create tokens that scripts may only use to access data of a particular scope when calling Google Apps APIs. For instance, a token set to call the Email Migration API would not be able to use your login credentials to access the Google Apps Provisioning API.
OAuth is an open standard: OAuth is an open source standard, making it a familiar choice for developers to work with.
The Google Apps APIs that support the OAuth signing mechanism are:
1.
Provisioning API
2.
Email Migration API
3.
Admin Settings API
4.
Calendar Resource API
5.
Email Settings API
6.
Audit API
OAuth support for Google Apps APIs is another step towards making Google Apps the most secure, reliable cloud based computing environment for organizations. To learn more about OAuth support and other administrative capacities launched in Google Apps this quarter, join us for a
live webinar
on Wednesday, September 29th at 9am PT / 12pm EST / 5pm GMT.
Administrators for Google Apps Premier, Education, and Government Editions can use OAuth authorization for Google Apps APIs starting today.For more information about the OAuth standard, visit
http://oauth.net
.
Posted by Ankur Jain, Software Engineer
Want to weigh in on this topic?
Discuss on Buzz
Labels
.NET
3
#io15
1
Administrative APIs
26
Admin SDK
4
AdSense
1
analytics
4
Android
5
App Engine
5
Apps Script
98
Auth
1
billing
4
Charts
1
Chrome OS
1
classroom
1
Cloud Storage API
1
Community
1
Developers
5
Directory API
1
Drive
2
Drive SDK
38
execution API
1
Firebase
1
Freemium
1
Fusion Tables
2
Gadgets
5
Gmail APIs
16
Google+
3
Google APIs
3
Google Apps
3
Google Apps Directory API
1
Google Apps Marketplace
3
Google Apps Script
1
Google Calendar API
20
Google Contacts API
3
Google Data Protocol
7
google docs
3
Google Docs API
20
Google Drive
2
Google Forms
4
Google I/O
3
googlenew
1
Google Prediction API
3
Google Profiles API
2
Google sheets
2
Google Sites API
4
Google Spreadsheets API
4
Google Talk
1
Google Tasks API
6
Groups
2
Guest Post
42
ISVs
2
java
1
JavaScript
3
marketing
3
Marketplace
47
Marketplace ISV Guest
21
Migration
1
Mobile
1
mpstaffpick
1
oauth
11
OpenID
7
PHP
1
python
4
realtime API
1
Resellers
2
Ruby
1
SaaS
1
security
1
Staff Picks
2
webinar
2
Archive
2015
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
2014
Dec
Oct
Sep
Aug
Jul
Jun
May
Mar
Feb
Jan
2013
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2012
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2011
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2010
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Feed
Follow @googleappsdev
