How can I add authentication module for my Sonos App - authentication

My company has a Sonos App on live. They want me to add authentication to the app. I red all the documentation but really its very hard for me, I cant add an authentication / Login module to this App. Maybe someone can help me for do that. Best regards:)

The authentication documentation is the best place to start. If you have specific questions about that documentation, you can post them here on SO.

Related

How does the Plunker authentication work

All. Forgive me if my question is off topic or a dumb question.
I really want to know how to implement a authentication mechanist like GitHub for Plunker.
In my project.I think I have the same situation like this.
I have some websites like Plunker.
and I want to implement a SSO center authication website or services for all the other websites like GitHub.
when I click the button Sign in with GitHub in the Plunker. The website will open the new windows with the url
https://github.com/login?return_to=%2Flogin%2Foauth%2Fauthorize%3Fclient_id%3D7e377e5657c4d5c332db%26redirect_uri%3Dhttp%253A%252F%252Fplnkr.co%252Fauth%252Fgithub%26scope%3Dgist
When I succeed to login in GitHub. Then the Plunker will login with the authenticated user I just used in the GitHub.
My problem is I don't know how does the authentication works between the GitHub and Plunker.
Could someone please tell me something about it ? It will be appriciated. Thanks.
Plunker's "log in with GitHub" button uses OAuth2, an open standard for this kind of thing. It's the same technology used by Google for their sign-in with Google functionality, as well as many other providers.
Here is GitHub's documentation for adding "log in with OAuth" to your site.
Creating your own OAuth provider is a significant task, and one that you probably don't want to tackle without weighing carefully. If you do choose to go down this path you'll likely want to use an existing library for your language or stack of choice, e.g. perhaps something from this list. This is also good advice if you only plan to build an OAuth client.
As pointed out, Plunkr's login process appears to be using Github's OAuth2, but manages to pull it off on the client without redirects/reloads using window.open and postMessage. A detailed description of the technique can be found here. The demo code looks relatively painless.
The Gatekeeper project seems to be a more polished implementation (with node.js) of that idea and there is a detailed tutorial on doing client-side auth with it here.

joomla 2.5, user authentication

I am currently trying to work out a solution, how to make an authentication for my Joomla 2.5 website.
I did the log in form, and created test users, although I don't know how to access Joomla DB. Can you help me find a solution for my question. The answers I found on google, I didn't quite understand.
It would be really nice if someone would share some good tutorials.
Thank you in advance.
Joomla manages authentication for you via its user management and authentication system. It already provides you with a login form in fact ... but more importantly it provides you with authentication and user plugins that you can add your own to if you need something different. This is the point of using a CMS to have a platform that already provides you with secure and well tested user management among other thigns.
Try this , I think it will be useful to you,
http://docs.joomla.org/J2.5:Accessing_the_database_using_JDatabase

Security questions for iOS app interaction with API

I am going to develop an iOS app for my web application so I will be working on an API Service that the iOS app will consume.
My question is :
How can I make sure to protect the access to my API ?
My main concern is just that I don't want someone else to use my API in order to duplicate the content to another app or website.
Thanks in advance,
Unfortunately this is very difficult to do. In short, you can't do this with 100% assurance because once your code is in the client's hands you have no control over it. Check out this StackOverflow question: Security When Using REST API in an iPhone Application
You may also find some value in this StackOverflow question as well: https://stackoverflow.com/questions/15390354/api-key-alternative/15390892#15390892

do I have to register as a shopify partner?

(I am reposting this question here because I tried on the google news group and got no responses.)
I need to build a shop for my client, and the client already has a domain and a web site. I need to integrate e-commerce functionality in to the site. This is going to be done by sending AJAX requests to the API.
my question is whether I need to get a partner account for this? I am not yet going to write an app that people would install, I am just building a store for my client. how is it done?
You do not need a Shopify Partner account for this. You can instead create a "Private application" within the normal shopify admin, which will give you the api credentials you need to make stuff happen.
This article on the shopify wiki gives a good overview of the process for getting started (the first sections are most relevant in your case):
http://wiki.shopify.com/Using_the_shopify_api_gem_with_the_credentials_of_a_private_app

Custom iOS Twitter Authentication page?

I am making a mobile application where users can connect their twitter accounts to the app. I am just kinda curious what's the best way to do it.
Right now, I would love to be able to make my own custom page (without having to use a UIWebView).
Is this possible? If how, so?
Thanks.
As I understand, you don't want the user to be redirected to Twitter's OAuth authorization web page. You can use xAuth instead, but you have to send Twitter an email why you want this, and they won't allow xAuth for your app until it is in a very late development state (when your app is almost complete). You can find the manual for xAuth in the Twitter development documentation.
Basically, what xAuth does is it allows desktop and mobile applications to skip the request_token and authorize steps and jump right to the access_token step. This way, you can provide the user with custom fields (e.g. UITextField objects) to fill their username and password in. Just make sure you don't save them anywhere, only the access token. Good luck. :)
A quick web search reveals MGTwitterEngine