Yahoo! OAuth Quick Start Guide
Abstract
This guide provides information about using OAuth with Yahoo! APIs and Web services. It is intended for software developers who are familiar with single-signon services such as BBAuth and RESTful Web services.
Looking for more docs? See the Y!OS Documentation landing page.
We welcome your feedback. Have a comment or question about this document? Let us know in the YDN Forum for Y!OS Documentation.
Introduction
OAuth verifies that requests by your application are actually yours and that you have permission to access potentially sensitive data for Yahoo! users.
This document supplements the official OAuth documentation and explains how the authorization process works when using Yahoo! Web services and APIs that require the three-legged OAuth model (a model that requires explicit consent from end users). For more information on the differences between two-legged and three-legged OAuth, refer to Private Data v. Public Data.
Important
This document also reflects revisions to the OAuth Core 1.0 specification as shown in the OAuth Core 1.0 Rev. A specification. This revision requires the oauth_callback parameter earlier in the OAuth Authorization Flow and also introduces an extra parameter known as the OAuth Verifier.