768x90 Getting Online Shouldn't be Tough- $7.49 .com Domains at Go Daddy

AuthSub Authentication on Flex or Air

10:13 AM Reinhart

There are 3 types of authentication on when you are accessing website nowdays, they are :

  1. AuthSub / ClientLogin authentication, this authentication uses credential login information and give back to you authentication token that will be used on header as security login token to make you available login in 24 hours.
  2. OAuth authentication, this authentication is using secret key and customer key, more secure than AuthSub, this kind authentication will use your token and secret token in header Authentication information to identify you are the valid user when accessing secure data or page.
  3. Basic Authentication, if you see pop up alert that ask you to enter username or password, that is Basic Authentication.
Now i would like to share you about how to make those authentication become autologin without you face on their login page. First let discuss AuthSub or ClientLogin :

Now, try access this page : http://docs.google.com/feeds/documents/private/full

You will see error like this Authorization required, Error 401. These scripts all you need to pass the authentication easily :

you can use or just a class of HTTPService.


<mx:VBox 
  xmlns:mx        = "http://www.adobe.com/2006/mxml" 
  width           = "100%" 
  height          = "100%"
  verticalAlign   = "middle"
  horizontalAlign = "center"
  backgroundColor = "#364a59"
  creationComplete= "{creationHandler()}"
  >
  
  <mx:Script>
    <![CDATA[

     import mx.rpc.events.FaultEvent;
     import mx.rpc.events.ResultEvent;
     import mx.rpc.http.mxml.HTTPService;
     import mx.utils.*;
       
      private function creationHandler():void{
        var data:Object = new Object;
        data.Email = "yacobus.r@kiranatama.com";
        data.Passwd = "Dec.07.1082"
        data.accountType = "GOOGLE";
        data.service = "writely";
        //ClientLogin Url : https://www.google.com/accounts/ClientLogin
        //AuthSub Url : https://www.google.com/accounts/AuthSubRequest
        gmailService.url = "https://www.google.com/accounts/ClientLogin";
        gmailService.contentType = "application/x-www-form-urlencoded";
        gmailService.method = "POST";
        gmailService.request = data;
        gmailService.addEventListener(ResultEvent.RESULT, successHandler);
        gmailService.addEventListener(FaultEvent.FAULT, faultHandler);
        gmailService.send();
      }

      private function successHandler(event:ResultEvent):void{
        gmailService.removeEventListener(ResultEvent.RESULT, new Function);
        var txtAuth:String = String(event.result);
        var authPosition:int = txtAuth.search("Auth");
        txtAuth = txtAuth.substring(authPosition);
        txtAuth = txtAuth.replace("Auth=","");
        authPosition = txtAuth.length;
        authPosition = authPosition - 1;
        txtAuth = txtAuth.substring(0,authPosition);

        accessProtectedUrl(txtAuth);
      }

      private function accessProtectedUrl(txtAuth:String):void{

        gmailService.headers = {Authorization:"GoogleLogin auth="+txtAuth};
        gmailService.url = "http://docs.google.com/feeds/documents/private/full";
        gmailService.method = "GET";
        gmailService.addEventListener(ResultEvent.RESULT, feedSuccess);
        gmailService.addEventListener(FaultEvent.FAULT, faultHandler);
      }

      private function feedSuccess(event:ResultEvent):void{
         //Do any logic for feed result here
         trace(XML(event.result))
      }


      private function faultHandler(event:FaulttEvent):void{

      }


    ]]>
  </mx:Script>

  <mx:HTTPService id="gmailService" showBusyCursor="true"/>  

</mx:VBox>


List of Google Apps Service : http://code.google.com/apis/base/faq_gdata.html#clientlogin

Posted in , ,
Posted by Reinhart

No Response to "AuthSub Authentication on Flex or Air"

Post a Comment

Subscribe to: Post Comments (Atom)
 
powered by Blogger