Best practices for the OAuth "application server" - Square -

-

i have application uses personal access token access list of items. want switch using oauth, application use items_read only.

my application daemon running on instance of secure ubuntu server dedicated application(s). regarding "application server" there square recommends - typical best practices "application server"?

thank you

the api documentation extensive, , includes a helpful section oauth. few common pitfalls i've noticed oauth implementations in past lead me call these things out:

  1. if building one-off integration own use, not worth using oauth.
  2. make sure understand how oauth works. if find asking users' client secrets or personal access tokens, or else requires them open app management dashboard @ connect.squareup.com, need rethink implementation. you, developer, should need understand access tokens , other api credentials.
  3. you can ask more oauth scopes bare minimum need. i'd recommend getting merchant_profile_read well. can useful manage accounts, , can hit /v1/me various ids you'll need.
  4. the square oauth access tokens expire as described here. last thirty days, can tend creep on developers aren't aware of it. need use scheduled task renew access tokens expire , purge old tokens after doing so. simple cronjob should fine.

in terms of technology stack use, that's entirely you. square connect team happy , provide recommendations when can.


Comments

Post a Comment

Popular posts from this blog

How has firefox/gecko HTML+CSS rendering changed in version 38? -

-
i have a little website header no longer renders correctly, since updating firefox 38.0.5 [the faceplant logo missing top right, , main logo no longer centred]. still renders expected in other browsers. how has engine's rendering changed in update? according mdn , list of changes is: css support ruby-position , ruby-align have been added , available default ( bug 1055676 , bug 1123917 , bug 1039006 ). the :unresolved pseudo-class has been implemented custom elements ( bug 1111633 ). the predefined style ethiopic-numeric uses space, instead of dot, suffix match recent change spec ( bug 1120721 ). css transitions on generated content (with ::before , ::after ) on both inline , block splits them start expected specification ( bug 1110277 ). the implementation of css logical properties made big progress. [...] how css transitions start has been modified match recent change of specifications, aiming @ having interoperable behavio
Read more

javascript - Complex json ng-repeat -

-
i try ng-repeat on object, tried several times still stuck. if have idea, , if it's possible share tips kind of situation. [ { "abonnement": { "id": "1", "nom": "bas prix", "tarif": "2.49", "communication": "2h de communication", "vers": "vers fixes et mobiles", "zone": "zone nationale" } }, { "abonnement": { "id": "2", "nom": "national", "tarif": "9.99", "communication": "t\u00e9l\u00e9phonie et sms illimit\u00e9s", "vers": "vers fixes et mobiles", "zone": "zone nationale" } }, { "abonnement": { "id": "3", "nom": "euro", "tarif&
Read more

jquery - Cloning of rows and columns from the old table into the new with colSpan and rowSpan -

-
i using clone jquery. necessary clone gray area in new table. problem cloned rows , columns can has rowspan , colspan. the gray area intersection data-fix-cols , data-fix-rows. my solution not work: <table id="old-table" data-fix-cols='3' data-fix-rows='4'> <tbody> <tr> <td class="gray">clone me</td> <td colspan="2" rowspan="2" class="gray">clone me</td> <td>ashgabat</td> <td>barcelona</td> <td>berlin</td> </tr> <tr> <td rowspan="3" class="gray">clone me</td> <td>bucharest</td> <td>warsaw</td> <td>washington</td> </tr> <tr> <td class="gray">clone me</td>
Read more