Comments (8)
你说的openid是指token是吧?
其实Redirect_URI本身是起作用了的,SDK完成的是将回调页获取的参数截取后传给App
你说的功能SDK没有支持
from weibo_ios_sdk.
我说的openid是指user_id.
如果sdk不能让服务器直接处理返回数据的话,怎么能保证应用安全呢,毕竟像uid和nickname等都是公开的,而accesstoken又是可变的,不能作为服务器进行判断唯一账号的依据。换句话说,只要破解了客户端的加密算法,用三方数据建立的账户,都是不安全的。
还有个问题,不用sdk,用api来实现的话,是能实现我说的效果的吧?
多谢回答
from weibo_ios_sdk.
我想我大概明白你的意思,
你可以用UID 和 token去反向验证,你把token和 UID 都传给你的服务器,你的服务器通过访问
http://open.weibo.com/wiki/Oauth2/get_token_info 这个Wiki的接口,可以判断是否这个UID是否真正的通过了服务器授权,
from weibo_ios_sdk.
太感谢了。
再多问一个问题,如果想实现sso登陆的效果,不用sdk的话,现有的api支持么?
from weibo_ios_sdk.
SSO是通过客户端进行单点登录,不用SDK肯定不行的,这个是APP之间的通信
from weibo_ios_sdk.
我之前看到某篇文章说,用api实现了新浪微博的sso登录,用hack的方式实现了qq的,当时我只研究了下qq的,忘了新浪的怎么说的了。。
from weibo_ios_sdk.
API就是SDK提供的API吧。。。 为什么不用SDK呢
from weibo_ios_sdk.
公司领导的有些要求比较奇葩,对实际的流程有很多不切实际的想法,很难用sdk全部实现。。
再次感谢
from weibo_ios_sdk.
Related Issues (20)
- iPad无法进行应用内网页登录。("用户名或密码错误") HOT 1
- 最新版的SDK还依赖WeiboSDK.bundle吗 HOT 1
- APP首次安装未同意隐私协议之前微博SDK进下读写SD卡操作 HOT 1
- 超话分享提示系统繁忙200404
- 编译警告
- 工程里面有UISceneDelegate,微博授权返回不回调响应方法
- iPad上使用QR码登录时,会在OAuth 2.0界面上停止。
- v3.3.4, xcode15 登录授权接收不到回调
- 3.3.6版本更新后初始化崩溃 HOT 1
- 在Swift框架中添加微博iOS SDK会触发“Include of non-modular header inside framework module”错误。
- 请求SDK支持xcframework产物 HOT 1
- Support App Privacy Manifest
- place/users/photos
- 麻烦在cocoapods里更新3.3.8版本~感谢 HOT 1
- podspec 资源中没有添加隐私清单。 HOT 3
- source paramter(appkey) is missing HOT 1
- PrivacyInfo.xcprivacy配置方式错误 HOT 2
- 微博开放平台回调url更改问题
- 使用的3.2.7版本sdk,拉起微博客户端授权页后又立马回到了我的app,这是怎么回事
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from weibo_ios_sdk.