Managing Authentication with Other Applications

Updated: October 16, 2020

This add-on is deprecated since Nuxeo Platform 6.0.

The Platform offers the possibility to use external gadgets in the Nuxeo Platform from the user interface and to use Nuxeo Platform's gadgets in other websites or applications.

External gadgets can be from public websites and applications, but you can also add gadgets from websites or applications that require you to log in, like a gadget from your email provider. If you want to use Nuxeo's gadgets in other applications, authentication is required as well.

OAuth is a protocol that enables external applications and Nuxeo Platform to access each other's data. Users can allow "consumer" (ie external) applications and websites to access the Nuxeo Platform data, Nuxeo Platform being the "provider".

In this section, we will take the example of iGoogle, that we want to authorize to display Nuxeo's data in a gadget.

To authorize external application to access Nuxeo Platform content:

In the Admin Center tab, click on the OpenSocial / OAuth tab.
Click on the Consumer tab.
Click on the Add link. The form to add a new consumer is displayed.
Fill in the form with the parameters below.
Click on the Create button.

Google consumer parameters

Field	Parameter
Consumer Key	www.google.com
Consumer Secret (HMAC Signature)	Leave empty
Consumer Public Key (RSA Signature)	-----BEGIN CERTIFICATE----- MIIDBDCCAm2gAwIBAgIJAK8dGINfkSTHMA0GCSqGSIb3DQEBBQUAMGAxCzAJBgNV BAYTAlVTMQswCQYDVQQIEwJDQTEWMBQGA1UEBxMNTW91bnRhaW4gVmlldzETMBEG A1UEChMKR29vZ2xlIEluYzEXMBUGA1UEAxMOd3d3Lmdvb2dsZS5jb20wHhcNMDgx MDA4MDEwODMyWhcNMDkxMDA4MDEwODMyWjBgMQswCQYDVQQGEwJVUzELMAkGA1UE CBMCQ0ExFjAUBgNVBAcTDU1vdW50YWluIFZpZXcxEzARBgNVBAoTCkdvb2dsZSBJ bmMxFzAVBgNVBAMTDnd3dy5nb29nbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GN ADCBiQKBgQDQUV7ukIfIixbokHONGMW9+ed0E9X4m99I8upPQp3iAtqIvWs7XCbA bGqzQH1qX9Y00hrQ5RRQj8OI3tRiQs/KfzGWOdvLpIk5oXpdT58tg4FlYh5fbhIo VoVn4GvtSjKmJFsoM8NRtEJHL1aWd++dXzkQjEsNcBXwQvfDb0YnbQIDAQABo4HF MIHCMB0GA1UdDgQWBBSm/h1pNY91bNfW08ac9riYzs3cxzCBkgYDVR0jBIGKMIGH gBSm/h1pNY91bNfW08ac9riYzs3cx6FkpGIwYDELMAkGA1UEBhMCVVMxCzAJBgNV BAgTAkNBMRYwFAYDVQQHEw1Nb3VudGFpbiBWaWV3MRMwEQYDVQQKEwpHb29nbGUg SW5jMRcwFQYDVQQDEw53d3cuZ29vZ2xlLmNvbYIJAK8dGINfkSTHMAwGA1UdEwQF MAMBAf8wDQYJKoZIhvcNAQEFBQADgYEAYpHTr3vQNsHHHUm4MkYcDB20a5KvcFoX gCcYtmdyd8rh/FKeZm2me7eQCXgBfJqQ4dvVLJ4LgIQiU3R5ZDe0WbW7rJ3M9ADQ FyQoRJP8OIMYW3BoMi0Z4E730KSLRh6kfLq4rK6vw7lkH9oynaHHWZSJLDAp17cP j+6znWkN9/g= -----END CERTIFICATE-----
Description	Leave empty
Allow 2 legged auth	Leave default value.
Callback URL	http://oauth.gmodules.com/gadgets/oauthcallback
Allow OAuth verifier check bypass	Check "Yes".
Enabled	Check "Yes".

Field

Parameter

Consumer Key

www.google.com

Consumer Secret (HMAC Signature)

Leave empty

Consumer Public Key (RSA Signature)

Description

Leave empty

Allow 2 legged auth

Leave default value.

Callback URL

http://oauth.gmodules.com/gadgets/oauthcallback

Allow OAuth verifier check bypass

Check "Yes".

Enabled

Check "Yes".

For more information, take a look at these pages: