I am interested in using OAuth for my twitter app but I have some questions:
1. When twitter authorizes the user and returns the access tokens I can store those tokens in my database for that user. Is it safe to say those tokens will never change unless they were to re-authorize themselves for my app? 2. How would a user login to my site? Would they follow the same process as sign-up, by going to the authorization URL and clicking 'allow' each time? Would my script have to check if the user is or not already in the database, and if they are then update the tokens? Thanks :)