Indirect login to Target System

The following is a sequence diagram for direct/indirect login to a Target system using user's credentials os Main System.

SMAuth, Simple Mobile Authentication

SMAuth is a simple mobile (and desktop) apps authentication schema. SMAuth is most suitable to run over HTTPS.

The whole idea here is to keep the client out of persisting the username/password and instead persist a token that will expire.

SMAuth is more suitable for Mobile and Desktop applications where the Resource owner (who know the username/password) is the client himself.

Learn More: http://code.google.com/p/smauth/

code: https://smauth.googlecode.com/svn/trunk/