And they want me to trust them with authentication?
Toilets: the only technology sector where there's a direct correlation between "input sanitization" and "virality metrics..."
To be fair, I'm not sure how secure YoAuth would be, but this particular hack seems like an awesome use of it. It's simple to use and could compete alongside something like Google Authenticator as a simple way to log in to something.
I see this string in the URL on the demo page so I'm not sure what this does.
Also, the security of this seems questionable.
There are other, more interesting uses of the yo API:
Seriously, don't use this. (Alice tries to log in to Bob's account. Bob receives a yo. Bob yos back to be nice without knowing this is an oauth scheme. Alice now has access to Bob's account.)
But that's not to critique these guys, because I think this is a fantastic hackathon project!
The service we built (http://yosesame.com) works by having you Yo YOSESAME, which signs you up if you aren't already and responds with a URL that logs you in right way. The way Yoauth approached it is interesting, but you're right it's a bit strange to have to receive a Yo.
Because it is.
Glad someone made it a reality!
It's a fun hack. Nicely done.