I have been using twitter oauth to get access token to use with my app for a year now.
It seems that twitter has changed the flow when the user successfully logs in and denies access to the app. Here the user is presented three options. You've denied <APP> access to interact with your account. <APP> can not access your Twitter account. 1) Return to <APP> 2) Go to Twitter. 3) Go to the <APP> homepage When I click on the first option twitter issues a callback <CALLBACK_URL>?denied=<a_value>&denied=<a_value> the callback has two parameters with the same name and value ?? This seems to be a bug. We are passing the oauth_token (optional) as a state parameter and this needs to be passed back if the callback is implemented when the user denies app. If this is not a bug please point us to the documentation on how to interpret the two parameters in the callback Thanks -- Twitter developer documentation and resources: https://dev.twitter.com/doc API updates via Twitter: https://twitter.com/twitterapi Issues/Enhancements Tracker: https://code.google.com/p/twitter-api/issues/list Change your membership to this group: https://groups.google.com/forum/#!forum/twitter-development-talk