Untitled Page
© 2006 - 2008, Live News
Live News™
Version: 3.0 2
Chat with us!
Knowledge Center
Topics Available
Windows Live APIs
Windows Live Data is an API from Microsoft that allows developers to access the user's Windows Live services and data. It can be used to access a user's Windows Live services and data, with explicit consent from the user. Currently Windows Live Data is in its alpha stage and only exposes Windows Live Contacts. Access to additional Windows Live services will be added for future beta releases.
AUNTHETICATION
To protect the user's privacy, Windows Live Data only provide access to a user's data only after they have granted permission to the application or website. A developer can choose one of the three possible authentication mechanisms:
Domain Authentication works by placing a hyperlink on a website to the Windows Live Data permission system. When users click on this hyperlink, they will be transferred to the Windows Live Data website, which will ask the user to approve or reject the permission request. If the user accepts the permission request, Windows Live Data will provide the credentials needed to request access to the user's data. Applications only need to ask the user for permission once. The response by Windows Live Data contains the Domain Authentication token that can be used in further requests. This token should then be added to each request sent to the Windows Live Data site.
Mutual SSL Authentication allow websites that have valid SSL/TLS certificate for client and server authentication to request access to user's data without the need to add a token to each request. However, applications still need to request access to the user's data as described at the Domain Authentication bullet.
RPS (Relying Party Suite) Authentication works by adding tokens to each request sent to the Windows Live Data website. However the tokens are requested at the Windows Live ID service.
Once an application is successfully authenticated, it can perform actions at the data on behalf of the user. Because authentication can done both via the Windows Live Data website or via the Windows Live ID service, developers can easily transform their website to a standalone application and vice-versa.
AUNTHETICATION
To protect the user's privacy, Windows Live Data only provide access to a user's data only after they have granted permission to the application or website. A developer can choose one of the three possible authentication mechanisms:
Domain Authentication works by placing a hyperlink on a website to the Windows Live Data permission system. When users click on this hyperlink, they will be transferred to the Windows Live Data website, which will ask the user to approve or reject the permission request. If the user accepts the permission request, Windows Live Data will provide the credentials needed to request access to the user's data. Applications only need to ask the user for permission once. The response by Windows Live Data contains the Domain Authentication token that can be used in further requests. This token should then be added to each request sent to the Windows Live Data site.
Mutual SSL Authentication allow websites that have valid SSL/TLS certificate for client and server authentication to request access to user's data without the need to add a token to each request. However, applications still need to request access to the user's data as described at the Domain Authentication bullet.
RPS (Relying Party Suite) Authentication works by adding tokens to each request sent to the Windows Live Data website. However the tokens are requested at the Windows Live ID service.
Once an application is successfully authenticated, it can perform actions at the data on behalf of the user. Because authentication can done both via the Windows Live Data website or via the Windows Live ID service, developers can easily transform their website to a standalone application and vice-versa.
Windows Live Data