I am wondering if its possible to work with oAuth 2 / JSON-RPC. I want to write an API for a project, which should be accessable from a mobile App or any other client. I am fairly new to ext js, I searched the web and here in forums but could not find any suggestion how to deal with oAuth and/or json-rpc.

Also if someone has more experience on API writing & security I would appreciate any feedback how you are implementing web services especially the security thing.

My primary client is supposed to be Ext JS.

Best regards