• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • OAuth 2.0 Makes Its Way Onto the IBM i

    March 18, 2015 Alex Woodie

    Don’t look now, but OAuth, the open standard for authentication first described by Twitter for allowing people to share data without using a password, is making its way into the enterprise. It’s even becoming adopted in the IBM i ecosystem, where a number of vendors, including BVS Tools, are adopting it as a standard authentication system for IBM i communication utilities.

    The folks at Twitter initially started developing OAuth nine years ago to provide a way to share files over the Web without passing user IDs and passwords. Instead of sharing credentials, the OAuth protocol allows users to approve one application interacting with another on their behalf, without involving any passwords.

    This is handy in the Web 2.0 world of social media. If you’ve ever been on a website and been presented the opportunity to post something to social media–say your Twitter feed or your Facebook page–then OAuth is the magic glue that makes that happen.

    BVS started adopting OAuth 2.0 with its IBM i utilities with the 2013 launch of the GreenTools for Google Apps (G4G), which connect IBM i data with Google Apps, notably Google’s Drive, Cloud Print, Contacts, and Calendar apps. Soon thereafter, BVS supported OAuth 2.0 with GreenTools for Microsoft Apps (G4MS), which similarly use Microsoft’s APIs to upload IBM i-resident data to Microsoft OneDrive.

    Now BVS is adopting OAuth in MAILTOOL, its popular tool that allows users to send emails from the IBM i server using a command line or RPG program. Specifically, BVS is supporting OAuth 2.0 in MAILTOOL Plus, an add-on to MAILTOOL that allows users to bypass the IBM SMTP server and send IBM i-generated emails via Gmail and Microsoft‘s Office 365 accounts.

    As BVS’ Brad Stone explains, the changes will enable MAILTOOL PLUS customers to stay straight on the narrow OAuth 2.0 path. “In a nutshell, it allows those wanting to send email from their IBM i using Gmail to take advantage of OAuth 2.0, which means they don’t need to store passwords on their system,” Stone says via email.

    Stone would have preferred to concentrate his efforts on building out the G4G and G4MS product sets, but he said he believed the writing was on the wall regarding the eventual demise of older authentication methods for hosted email.

    “It seems Google is slowly moving this way for all their application access,” Stone says. “They’ve already deprecated the old ClientLogin method for most Google Apps and moved to OAuth 2.0. I have a feeling the same will happen with Gmail.”

    OAuth 2.0 certainly has momentum. It’s used exclusively by social media sites like Facebook, Instagram, and Foursquare, as well as big cloud email providers like Google and Microsoft. But there’s trouble brewing in the house of OAuth, and some sites, like Twitter, Salesforce.com, and LinkedIn, support both OAuth 1 and OAuth 2.

    The OAuth 1.0 protocol was originally published in 2010 by the Internet Engineering Task Force. In 2012, the standards were re-written with OAuth 2.0, which is not backward compatible with OAuth 1.0. Eran Hammer, the lead author of the OAuth 2.0 project, quit because he believed the enterprise focus of OAuth 2.0 was leading it down the road of being too complex, too incomplete, and too insecure (you can read all about the hubbub on Wikipedia).

    MAILTOOL Plus, by the way, never used OAuth 1.0. Instead, it supported only “plain” and “basic” authentication mechanisms, so OAuth 2.0 should be a big improvement in any event.

    RELATED STORY

    New BVS Tools Hook IBM i to Google Apps

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    Chordia Consulting

    Chordia Consulting announces its first annual 2021 IT Management Effectiveness Survey

    Chordia Consulting’s 2021 IT Management Effectiveness Survey can help clients identify top problem hotspots and priorities for improvement.  There is no charge for survey participation, and clients will receive a personalized, easy-to-understand survey feedback report (a $500 value) right away, together with a full, comparative analysis report when the survey is completed.

    The survey takes only a few minutes to complete using the secure Alchemer survey tool, and is based on RAITH™, Chordia’s proprietary on-line IT healthcheck service and the underlying, proven IT/CBM™ management model.  The focus is on real-world client IT management issues, particularly in the context of today’s IT environment and priorities.  Should clients wish to extend the value of their survey feedback report by conducting a more detailed and complete Chordia RAITH™ IT healthcheck, RAITH is available at a discounted rate for survey participants through June 30 of this year.

    In addition to being offered to IT clients of all sizes, across all industries, and on a worldwide basis, the Chordia survey may also be used by other IT service providers and consulting firms as a means of better understanding the evolving needs of their clients.   Chordia is offering such partners the opportunity to become ‘sponsors’ and invite their own clients to take the survey as a group.  These collective client responses will be bundled into a service provider-specific subset of the full analysis report, offering more focused insight into each sponsor’s existing client population.  Again, this sponsor-specific service is offered at no-charge.

    Whether you’re an IT or business leader looking to learn more about how to improve your IT capabilities in 2021 or an IT professional service provider seeking to understand how better to serve their client base, take a look at Chordia Consulting’s no-charge IT Management Effectiveness Survey – it may be a perfect first step to rebuilding in 2021.

    Take the Survey Now!

    Please Contact Chordia Consulting at info@chordiaconsulting.com or visit our website for additional information.

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    COMMON:  2015 Annual Meeting & Expo, April 26 - 29, at the Disneyland® Resort in Anaheim, California
    Profound Logic Software:  Extend & Future-proof RPG Apps with PHP. March 25 Webinar!
    COMMON:  2015 Annual Meeting & Expo, April 26 - 29, at the Disneyland® Resort in Anaheim, California

    A Ruby And RPG Conversation OpenPower Could Take IBM i To Hyperscale And Beyond

    Leave a Reply Cancel reply

Volume 25, Number 16 -- March 18, 2015
THIS ISSUE SPONSORED BY:

Maxava
BCD Software
COMMON
Northeast User Groups Conference
LaserVault

Table of Contents

  • IBM Patches BIND and OpenSSL Flaws in IBM i
  • IBM Unveils ETL Solution for DB2 Web Query
  • Midrange Dynamics Takes Aim At Database Changes
  • OAuth 2.0 Makes Its Way Onto the IBM i
  • Kisco Debuts Sub-$400 Message Monitor

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • 2021 Predictions for IBM i, Part 1
  • West Four Stands Out With On Demand Color Label Printing
  • HelpSystems Acquires Data Security, File Transfer Companies
  • Four Hundred Monitor, January 13
  • IBM i PTF Guide, Volume 23, Number 2
  • Seiden Group Unveils A PHP Distro For IBM i
  • Thoroughly Modern: DevOps Refactoring Of RPG Applications with RDi
  • Guru: Fall Brings New RPG Features, Part 2
  • More Vintage Power Systems Feature Withdrawals
  • IBM i PTF Guide, Volume 23, Number 1

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2021 IT Jungle

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.