|
|
|
|
|
|
by techthumb
1682 days ago
|
|
|
I follow the implementation here. The conflating part here is that using the callback as a mechanism to imply subscription. This works for your situation. However, if you need to start making multiple backend calls, then, you will likely need to separate the authentication part from the subscription part. Generally, OAuth implies that the requirement is to get authenticated by a provider and making multiple subsequent calls to some backend. Additionally, the backend will verify the authenticity of the short-lived token before allowing the operation to proceed. |
|
|