View Full Version : oAuth 2 / JSON-RPC

Alexander Bauer
16 Jul 2012, 12:08 PM

I am wondering if its possible to work with oAuth 2 / JSON-RPC. I want to write an API for a project, which should be accessable from a mobile App or any other client. I am fairly new to ext js, I searched the web and here in forums but could not find any suggestion how to deal with oAuth and/or json-rpc.

Also if someone has more experience on API writing & security I would appreciate any feedback how you are implementing web services especially the security thing.

My primary client is supposed to be Ext JS.

Best regards

Alexander Bauer
24 Jul 2012, 10:31 AM
Seems nobody has a suggestion. However, had to write own solution.

11 Sep 2012, 9:40 AM
It seems that for complicated stuff there is a lack of documentation, I have seen nice examples for charts,etc.

But not for models with associations that makes intensive use of those in a grid or window, or basic tutorial for authentication and managing roles in a Sencha ExtJS 4 MVC application using a JSON backend (other than a basic PHP for testing).

As the same as you learning Extjs4 from the beginning is complicated since there is no documentation for real applications only small tests of components. And the tutorials that are more interesting doesn't usually cover complicated stuff.

Javascript MVC is very different to a regular <MVC framework> with controllers and models in the server.

Which was the solution you came with ?


Alexander Bauer
11 Sep 2012, 11:23 AM
I wrote my own classes: reader, writer, Proxy and Ext.data.Connection. They manage my JSON-RPC & oauth2 implementation. All possible because extjs has a nice core API / inheritance System.

12 Sep 2012, 3:21 AM
I see, so it is not supported out of the box.

We can always code ourselves this kind of things, the thing is that is pretty much common if you plan to use MVVC with a JSON backend separating the layers between user and your API.

I mean, there is no point in using this technology authenticating like in any other web framework. Sessions, cookies, that will always work, but OAuth is the way to go for integration, etc. If you have advanced requirements.

Would be nice to have a technical explanation on the topic with real scenarios and examples.


Alexander Bauer
12 Sep 2012, 3:33 AM
Well, I think its not supported because oAuth2 is not final yet. However I have own backend oAuth2 implementation and thus it probably requires unique proxy. I agree with you, it would be nice to have this all from one hand but SOA is another topic than ExtJS is.

8 Oct 2012, 6:33 AM

Could you share how you implemented this with Oauth, I am trying to figure a good way to do this with Sencha Touch, but this area is very new to me.