I'm dealing with potentially adding Auth API to an app, where much of its use will be internal for now. I have some setup with OAuth 2, but with the recent talk of how much of a mess it is, I'm reconsidering. What is one to do with a new app, that wants to provide intelligent, connectable Authentication over API?
Redhat is <i>very</i> strongly pushing WebSSO as the next best thing for single sign on and simple/secure authentication. Conceptually, it beats OAuth. We shall see if it gains traction:
<a href="http://websso.github.com" rel="nofollow">http://websso.github.com</a>