LinkedIn today rolled out support for OAuth 2.0 as part of a set of tools that make it easier to integrate features of the social networking site into other applications.
LinkedIn joins a growing list of OAuth 2.0 supporters that includes Google, Salesforce.Com, Facebook, Microsoft and Twitter (v1). Support from Ping will be available in the next few months.
Here is how they describe the API's function:
LinkedIn describes the OAuth flow like this:
- The application securly passes the JSAPI token from the user's browser to the application's server/backend.
- The backend code makes a call to LinkedIn to exchange the short-lived token for a longer-lived, OAuth token. The application confirms that this is secure and safe by signing the request with their API secret (normal OAuth, nothing proprietary).
LinkedIn has also upgraded all its APIs to support JSON, allowing them to handle any request directly from the browser.
- Sign-In with LinkedIn. Makes it easier for users to authenticate or register for your site using their LinkedIn identity.
- Share. A button that enables users to share your website with LinkedIn’s professional audience.
- Member Profile. Brings LinkedIn profiles to your site.
- Full Member Profile. Brings larger, more detailed LinkedIn profiles to your site.
- Company Profile. Displays company info at-a-glance.
- Company Insider. Shows company data from several different views.
- Recommend. A button that enables users to recommend your products and drive traffic back to your site.