Help:OAuth/ko

OAuth is a means of giving outside ("connected") applications the ability to perform edits and other actions on your behalf. Using this authentication protocol, you can authorize ("grant") a connected application the ability to act on your behalf without the need to divulge your password. The OAuth protocol is widely used by other websites, including major sites such as Google and Flickr.

An example of how OAuth can be used on Wikimedia wikis is the image editing helper CropTool.

자주 묻는 질문
만약 당신의 질문에 대한 답이 여기에 없다면 토론 문서에 질문하시기 바랍니다.

OAuth는 안전한가요?
예 그렇습니다. OAuth 프로토콜은 서드 파티 허가를 위한 보안 방법으로 설계되어 있습니다.

Firstly, OAuth allows third-party websites to access your account without you having to give them your password. Applications are able to access your account if and only if you authorize them to do so, and if you revoke that right then application will immediately be unable to take actions on your behalf.

Secondly, each third-party website you authorize is only allowed to take the specific actions you authorized it to. This means that, for example, if you are an administrator and you authorize an application that asks only for "Basic rights", if the application tries to delete a page (which requires admin rights) then that wiki will reject the request. Previously, if an application had your password, you were relying on the assurances of the author of the application that it would not use your advanced rights.

이 기능이 저에게 어떤 영향을 주나요?
Applications cannot take any actions on your behalf without authorization, so until you decide you want to use an application which uses OAuth, you're not affected at all.

제 계정과 어떻게 연동 시키나요?


If an application wishes to use OAuth to take actions on your behalf, you will have to authorize it to do so. Applications cannot take any actions on your behalf without authorization.

When an application asks you to authorize it, you will be presented with a dialog which tells you what rights the application has asked for (see image on the right). If you click "Cancel", the authorization process is declined. If you click "Allow", the application will be authorized to take the actions listed in the dialog.

A list of currently available applications is available at Special:OAuthListConsumers.

제 계정과 연결된 프로그램을 어디서 확인할 수 있나요?
The page Special:OAuthManageMyGrants (which is also accessible from the "User profile" tab in your preferences) lists all the applications you have authorized to access your account. From this page, you can also adjust and revoke grants.

How do I remove an application's ability to access my account?
Go to Special:OAuthManageMyGrants, find the application you want to remove access for, and click "revoke access". Then, on the page that opens, click the "Deauthorize" button.

Once an application is deauthorized, it will no longer be able to access your account or take any actions on your behalf. You will have to go through that application's authorization process again in order for it to access your account.

The management interface is global - it will show the same applications, no matter which Wikimedia wiki you are on.

How do I change what actions an application can take with my account?
Go to Special:OAuthManageMyGrants, find the application you want to modify the permissions for, and click "manage access". From here you can revoke any individual permissions, excluding "Basic rights" which are the minimal rights required by all connected applications to function.

Please note that altering or removing permissions from an application's grant may cause the application to stop working properly for you.

OAuth가 어떻게 작동하는 지 예시를 알 수 있을까요?
Brad Jorsch has put together an example of how OAuth works called "OAuth Hello World!". To try it, go to https://tools.wmflabs.org/oauth-hello-world/.

제 프로그램을 어디에서 등록할 수 있나요
여기에서 등록할 수 있습니다.(URL을 등록할 때에는 프로토콜(예: http://, https:// )을 포함시켜야 올바르게 작동합니다.)

같이 보기

 * OAuth Hello World PHP로 작성된 어플리케이션
 * flask-mwoauth 라이브러리


 * OAuth/For_Developers
 * OAuth/Owner-only consumers