"Protecting your API with OAuth" at CodeMash.