[twitter-dev] Re: Announcing Twitterfall Reply Search service and API.
Very cool! I will definitely watch this project as it develops! On Aug 25, 7:50 am, x5315 red.ca...@gmail.com wrote: Have you ever seen your favourite celebrity ask a question, and you were wondering about the answer too? Or have you ever been taking part in a competition and been wondering who else was entering? The Reply Search service allows you to view replies to tweets based on their ID, or based on a username. For more details seehttp://blog.twitterfall.com/see-whos-replying-right-now orhttp://replies.twitterfall.com
[twitter-dev] Re: Stop playing around with Source parameters
Hello Twitter, Any official word on this apparent vulnerability around the Source parameter and cross site scripting? http://www.davidnaylor.co.uk/massive-twitter-cross-site-scripting-vulnerability.html TCI On Aug 22, 9:46 am, Chad Etzel jazzyc...@gmail.com wrote: Hi All, We did not intend for the nofollow string to be included in API results. It is on our list to fix. In the meantime you will need to parse around it. Thanks, -Chad On Sat, Aug 22, 2009 at 11:20 AM, Costa Ricaticoconid...@gmail.com wrote: Thanks to all for your suggestions on how to parse, remove nofollows or extract the URL, but that's not the bottomline of my message. There are some source parameters that are posting automated crap constantly, and since I run a trending engine I continuously exclude these tweets. Yes I can parse and str replace and even base myself only on the URL, but the 2 side effects are that my processing time increase (a simple string compare vs a regex) - which becomes significant as I increase the volume I intend to process, and that the URL's themselves can easily change to workaround these filters. I will keep my simple compare - the sites are not that many and the processing toll of regex'ing this does not merit it - but I would appreciate some word from Twitter when the source parameter is being changed, or else some sourceid that is stable. R On Aug 21, 10:17 pm, TCI ticoconid...@gmail.com wrote: Recently you added nofollow's, and now you moved the nofollow after the href. Some of us filter these out and you changing them is only making it more complicated. Please make up your mind and stop changing these... a href=http://fun140.com/;Fun140/a a rel=nofollow href=http://fun140.com/;Fun140/a a href=http://fun140.com/; rel=nofollowFun140/a
[twitter-dev] Re: Announcing Twitterfall Reply Search service and API.
Nice work. I've been looking for something like this to query replies to a given tweet. Always thought it would be nice if twitter supported this in their API. On Wed, Aug 26, 2009 at 1:19 AM, Sean P. seantpa...@gmail.com wrote: Very cool! I will definitely watch this project as it develops! On Aug 25, 7:50 am, x5315 red.ca...@gmail.com wrote: Have you ever seen your favourite celebrity ask a question, and you were wondering about the answer too? Or have you ever been taking part in a competition and been wondering who else was entering? The Reply Search service allows you to view replies to tweets based on their ID, or based on a username. For more details seehttp:// blog.twitterfall.com/see-whos-replying-right-now orhttp://replies.twitterfall.com -- Josh
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
Doing it without the express, explicit consent of the user is sneaky. It's also likely to get your application banned. If it's important to you to know who your users are, ask them to register. But it should always be opt-in. On Aug 25, 11:21 pm, JDG ghil...@gmail.com wrote: I fail to see how knowing the user's screen name only is phoning home or a sneaky thing. On Tue, Aug 25, 2009 at 16:20, Joseph Cheek jos...@cheek.com wrote: I agree. I've seen a lot of resistance to user apps that phone home in the past. Joseph Cheek jos...@cheek.com @cheekdotcom mcdade wrote: Thanks JDG for the advice but I wrote an App, not a webapp. The program runs on the users computer and they auth, I really don't want to do a whole i'm going to quietly send your info to me while you aren't looking. I really dislike when companies put in a some sneaky things to get the user info without the user knowing about it. Twitter really should provide a method of seeing this server side, I guess they don't. -b On Aug 25, 11:44 pm, JDG ghil...@gmail.com wrote: they do. when you get an access token, the screen name and their ID are returned to you along with the token. Use it. Store it. On Tue, Aug 25, 2009 at 15:18, mcdade bmcd...@gmail.com wrote: Bumping on this since no one answered.. And i'm up to 90 users who authed now but I have no idea who they are since i can't search my app's name. Twitter needs to create a way for Developers to track users who are using the product. Look at Facebook, they have amazing tools for the Developer -b On Aug 12, 4:33 pm, mcdade bmcd...@gmail.com wrote: Ok. So I have my app written, I usedoauthto authenticate them since it was easier the storing the password. Anyways I didn't write in anything special to trackusers(or make the follow me) but I would like to see who is using it since I had about 300 downloads on the app but have only about 58 ppl who have authenticated with twitter. Thanks -bryan oh.. and i wrote the app in Cocoa and the framework and code examples suck and mostly don't work. -- Internets. Serious business. -- Internets. Serious business.
[twitter-dev] Pass credentials to browser
Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials?
[twitter-dev] tweet_id[new] tweet_id[old] ?
if tweet_id is the one that since_id in the search API uses then for all tweets tweet_id[new] tweet_id[old] or not?
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
How could using JUST the screen name -- something that twitter explicitly provides to you -- possibliy get your application banned? I'm failing to see how something that is readily available that Twitter provides for identification purposes is so bad, and despite my respect for many of the developers on this list, I have yet to see a compelling argument for that position. I'm willing to have my mind change, don't get me wrong. But at the same time, I know that there are chances for malicious hijinx in ANY case where the user has granted access to a third-party app, regardless of whether the app has that user's screen name or not. On Wed, Aug 26, 2009 at 02:45, Duane Roelands duane.roela...@gmail.comwrote: Doing it without the express, explicit consent of the user is sneaky. It's also likely to get your application banned. If it's important to you to know who your users are, ask them to register. But it should always be opt-in. On Aug 25, 11:21 pm, JDG ghil...@gmail.com wrote: I fail to see how knowing the user's screen name only is phoning home or a sneaky thing. On Tue, Aug 25, 2009 at 16:20, Joseph Cheek jos...@cheek.com wrote: I agree. I've seen a lot of resistance to user apps that phone home in the past. Joseph Cheek jos...@cheek.com @cheekdotcom mcdade wrote: Thanks JDG for the advice but I wrote an App, not a webapp. The program runs on the users computer and they auth, I really don't want to do a whole i'm going to quietly send your info to me while you aren't looking. I really dislike when companies put in a some sneaky things to get the user info without the user knowing about it. Twitter really should provide a method of seeing this server side, I guess they don't. -b On Aug 25, 11:44 pm, JDG ghil...@gmail.com wrote: they do. when you get an access token, the screen name and their ID are returned to you along with the token. Use it. Store it. On Tue, Aug 25, 2009 at 15:18, mcdade bmcd...@gmail.com wrote: Bumping on this since no one answered.. And i'm up to 90 users who authed now but I have no idea who they are since i can't search my app's name. Twitter needs to create a way for Developers to track users who are using the product. Look at Facebook, they have amazing tools for the Developer -b On Aug 12, 4:33 pm, mcdade bmcd...@gmail.com wrote: Ok. So I have my app written, I usedoauthto authenticate them since it was easier the storing the password. Anyways I didn't write in anything special to trackusers(or make the follow me) but I would like to see who is using it since I had about 300 downloads on the app but have only about 58 ppl who have authenticated with twitter. Thanks -bryan oh.. and i wrote the app in Cocoa and the framework and code examples suck and mostly don't work. -- Internets. Serious business. -- Internets. Serious business. -- Internets. Serious business.
[twitter-dev] Re: Pass credentials to browser
2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/
[twitter-dev] Re: Is twitter down ???
Oauth seems down ... stephane @sphilipakis http://www.twazzup.com On Aug 25, 9:22 pm, Andrew Badera and...@badera.us wrote: status.twitter.com is rarely up to date or detailed. I've seen issues on the web the past 20 minutes or so. loading now though. On Wed, Aug 26, 2009 at 12:17 AM, Vigneshvignesh.isqu...@gmail.com wrote: All my api calls are getting a download error and the twitter website itself is not opening, http://status.twitter.comhas no updates about this What is happening?
[twitter-dev] Need Help with the Russian Language
Hi, Me and my team developed a site that posts tweets on the twitter page of a client. These tweets are in Russian Language. The problem is that when we submit a tweet on the site in Russian, it displays correctly but when the same tweet is posted on the twitter page via the API, it gets messed up and does not display correctly. We have tried everything we found on the internet with no solution. Please take a look at the site www.sekretanet.ru and the corresponding twitter page www.twitter.com/sekretanet . Prompt responses will be highly appreciated. Thank You! Wajahat
[twitter-dev] Re: Pass credentials to browser
Not HIS IP -- that's a client process there. That will be spread around individual client IPs, which being mobile are probably highly dynamic. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) On Wed, Aug 26, 2009 at 9:15 AM, Stuartstut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/
[twitter-dev] Re: Pass credentials to browser
Actually ... IS that PocketIE, or is that Internet Explorer on a desktop? If desktop, why are you scraping the mobile page? On Wed, Aug 26, 2009 at 9:27 AM, Andrew Baderaand...@badera.us wrote: Not HIS IP -- that's a client process there. That will be spread around individual client IPs, which being mobile are probably highly dynamic. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) On Wed, Aug 26, 2009 at 9:15 AM, Stuartstut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/
[twitter-dev] API Access from desktop and web applications using one application
Hi, I'm fairly new to Twitter, particularly Twitter development. I have a question: I have a desktop client application and a web application. I have created a twitter application for API access. Ideally, I would like to be able to give users access to Twitter from my desktop app and web app using just the one twitter application. Is this possible? Or do I have to create two seperate twitter applications; one for desktop, the other for the web?
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
Here's the example: 1. You download my desktop Twitter client. 2. You install it and authorize it to your Twitter account. 3. -Without your consent or knowledge-, my Twitter client sends me your screen name. That's unethical. If you don't think so, go ahead and code that into your client and watch your users freak out when they find out that you've been collecting their personal information without your consent. On Aug 26, 9:14 am, JDG ghil...@gmail.com wrote: How could using JUST the screen name -- something that twitter explicitly provides to you -- possibliy get your application banned? I'm failing to see how something that is readily available that Twitter provides for identification purposes is so bad, and despite my respect for many of the developers on this list, I have yet to see a compelling argument for that position. I'm willing to have my mind change, don't get me wrong. But at the same time, I know that there are chances for malicious hijinx in ANY case where the user has granted access to a third-party app, regardless of whether the app has that user's screen name or not. On Wed, Aug 26, 2009 at 02:45, Duane Roelands duane.roela...@gmail.comwrote: Doing it without the express, explicit consent of the user is sneaky. It's also likely to get your application banned. If it's important to you to know who your users are, ask them to register. But it should always be opt-in. On Aug 25, 11:21 pm, JDG ghil...@gmail.com wrote: I fail to see how knowing the user's screen name only is phoning home or a sneaky thing. On Tue, Aug 25, 2009 at 16:20, Joseph Cheek jos...@cheek.com wrote: I agree. I've seen a lot of resistance to user apps that phone home in the past. Joseph Cheek jos...@cheek.com @cheekdotcom mcdade wrote: Thanks JDG for the advice but I wrote an App, not a webapp. The program runs on the users computer and they auth, I really don't want to do a whole i'm going to quietly send your info to me while you aren't looking. I really dislike when companies put in a some sneaky things to get the user info without the user knowing about it. Twitter really should provide a method of seeing this server side, I guess they don't. -b On Aug 25, 11:44 pm, JDG ghil...@gmail.com wrote: they do. when you get an access token, the screen name and their ID are returned to you along with the token. Use it. Store it. On Tue, Aug 25, 2009 at 15:18, mcdade bmcd...@gmail.com wrote: Bumping on this since no one answered.. And i'm up to 90 users who authed now but I have no idea who they are since i can't search my app's name. Twitter needs to create a way for Developers to track users who are using the product. Look at Facebook, they have amazing tools for the Developer -b On Aug 12, 4:33 pm, mcdade bmcd...@gmail.com wrote: Ok. So I have my app written, I usedoauthto authenticate them since it was easier the storing the password. Anyways I didn't write in anything special to trackusers(or make the follow me) but I would like to see who is using it since I had about 300 downloads on the app but have only about 58 ppl who have authenticated with twitter. Thanks -bryan oh.. and i wrote the app in Cocoa and the framework and code examples suck and mostly don't work. -- Internets. Serious business. -- Internets. Serious business. -- Internets. Serious business.
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
Here's the example: 1. You download my desktop Twitter client. 2. You install it and authorize it to your Twitter account. 3. -Without your consent or knowledge-, my Twitter client sends me your screen name. That's unethical. If you don't think so, go ahead and code that into your client and watch your users freak out when they find out that you've been collecting their personal information without your consent. Quite. Whether or not it seems logical, it's all about user perception, and most of them are not going to like apps passing on any kind of data without them opting into it. Even the version check in TTYtter is purely opt-in, and that's strictly anonymous. -- personal: http://www.cameronkaiser.com/ -- Cameron Kaiser * Floodgap Systems * www.floodgap.com * ckai...@floodgap.com -- I ... I love you! Oh noo! I don't! -- Awful movie, Ranma 1/2 -
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
Quitter checks for updates, and like TTYtter it always asks permission and you can turn it off in the configuration menu. If your users have information that you want, ask them for it. If the information has value to you, offer something of value in return. On Aug 26, 11:02 am, Cameron Kaiser spec...@floodgap.com wrote: Here's the example: 1. You download my desktop Twitter client. 2. You install it and authorize it to your Twitter account. 3. -Without your consent or knowledge-, my Twitter client sends me your screen name. That's unethical. If you don't think so, go ahead and code that into your client and watch your users freak out when they find out that you've been collecting their personal information without your consent. Quite. Whether or not it seems logical, it's all about user perception, and most of them are not going to like apps passing on any kind of data without them opting into it. Even the version check in TTYtter is purely opt-in, and that's strictly anonymous. -- personal:http://www.cameronkaiser.com/-- Cameron Kaiser * Floodgap Systems *www.floodgap.com* ckai...@floodgap.com -- I ... I love you! Oh noo! I don't! -- Awful movie, Ranma 1/2 -
[twitter-dev] Re: Pass credentials to browser
it doesn't appear that he's scraping at all. he's just starting a process to show the user's twitter page and wants to have the user logged in already. Joseph Cheek jos...@cheek.com @cheekdotcom Andrew Badera wrote: Actually ... IS that PocketIE, or is that Internet Explorer on a desktop? If desktop, why are you scraping the mobile page? On Wed, Aug 26, 2009 at 9:27 AM, Andrew Baderaand...@badera.us wrote: Not HIS IP -- that's a client process there. That will be spread around individual client IPs, which being mobile are probably highly dynamic. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) On Wed, Aug 26, 2009 at 9:15 AM, Stuartstut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Joseph Cheek jos...@cheek.com, www.cheek.com twitter: http://twitter.com/cheekdotcom
[twitter-dev] non json response
Occassionally i get back a 200 status html response from the json search api which look like this, most times the same search works fine, it just happens occassionally: !DOCTYPE html PUBLIC -//W3C//DTD HTML 4.01//EN http://www.w3.org/ TR/1999/REC-html401-19991224/strict.dtd !-- !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01//EN http://www.w3.org/TR/html4/strict.dtd; -- HTML HEAD META HTTP-EQUIV=Refresh CONTENT=0.1 META HTTP-EQUIV=Pragma CONTENT=no-cache META HTTP-EQUIV=Expires CONTENT=-1 TITLE/TITLE /HEAD BODYP/BODY /HTML Does anyone recognise what this kind of response means? Is it normal, or just beta-ish quirks?
[twitter-dev] Re: non json response
Ben, It's a known issue and we are trying to hunt it down. Can you please provide us with your source IP and an approximate time of when you saw it? Thanks, Ryan On Wed, Aug 26, 2009 at 7:00 AM, benben.apperr...@googlemail.com wrote: Occassionally i get back a 200 status html response from the json search api which look like this, most times the same search works fine, it just happens occassionally: !DOCTYPE html PUBLIC -//W3C//DTD HTML 4.01//EN http://www.w3.org/ TR/1999/REC-html401-19991224/strict.dtd !-- !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01//EN http://www.w3.org/TR/html4/strict.dtd; -- HTML HEAD META HTTP-EQUIV=Refresh CONTENT=0.1 META HTTP-EQUIV=Pragma CONTENT=no-cache META HTTP-EQUIV=Expires CONTENT=-1 TITLE/TITLE /HEAD BODYP/BODY /HTML Does anyone recognise what this kind of response means? Is it normal, or just beta-ish quirks?
[twitter-dev] Re: Pass credentials to browser
How is that scrapping? He is just launching IE and pointing the browser at a twitter web page for viewing. As long as he does not parse that page for data and just uses it to display that's not scrapping. Now I don't think there is a legit way of passing login credentials, that the user will have to do on there own. On Wed, Aug 26, 2009 at 8:15 AM, Stuart stut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Josh
[twitter-dev] Re: heavy throttling by search.twitter.com API from GAE application
Hi, Just a question, I am starting to see very heavy throttling to the Twitter Search API from the Google App engine. I am receiving 503's enhance your calm very frequently. I have a custom set User-Agent string and I am probably doing less than 1 search per second. It has been happening for a couple of days now. Has there been a recent change to cause this behaviour. Paul.
[twitter-dev] Re: Pass credentials to browser
Yeah there is, albeit not a very nice one: You can do http://user:p...@site/ On Wed, Aug 26, 2009 at 09:24, Josh Roesslein jroessl...@gmail.com wrote: How is that scrapping? He is just launching IE and pointing the browser at a twitter web page for viewing. As long as he does not parse that page for data and just uses it to display that's not scrapping. Now I don't think there is a legit way of passing login credentials, that the user will have to do on there own. On Wed, Aug 26, 2009 at 8:15 AM, Stuart stut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Josh -- Internets. Serious business.
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
I disagree. By granting the application access to my account, I tacitly accept the fact that they can access any information that the API provides. The API returns the user's screen name every time you fetch their posts. For crying out loud, a malicious app could go through and delete your last 3200 posts without your even realizing it. You're concerned about using a piece of readily available information -- one that does not actually accurately identify you on Twitter since you can change your username at will -- for something that could probably be relatively benign (Welcome, @user!). Yes, I know there are malicious ways to use it, but there are malicious ways to use any read/write API. On Wed, Aug 26, 2009 at 08:08, Duane Roelands duane.roela...@gmail.comwrote: Here's the example: 1. You download my desktop Twitter client. 2. You install it and authorize it to your Twitter account. 3. -Without your consent or knowledge-, my Twitter client sends me your screen name. That's unethical. If you don't think so, go ahead and code that into your client and watch your users freak out when they find out that you've been collecting their personal information without your consent. On Aug 26, 9:14 am, JDG ghil...@gmail.com wrote: How could using JUST the screen name -- something that twitter explicitly provides to you -- possibliy get your application banned? I'm failing to see how something that is readily available that Twitter provides for identification purposes is so bad, and despite my respect for many of the developers on this list, I have yet to see a compelling argument for that position. I'm willing to have my mind change, don't get me wrong. But at the same time, I know that there are chances for malicious hijinx in ANY case where the user has granted access to a third-party app, regardless of whether the app has that user's screen name or not. On Wed, Aug 26, 2009 at 02:45, Duane Roelands duane.roela...@gmail.com wrote: Doing it without the express, explicit consent of the user is sneaky. It's also likely to get your application banned. If it's important to you to know who your users are, ask them to register. But it should always be opt-in. On Aug 25, 11:21 pm, JDG ghil...@gmail.com wrote: I fail to see how knowing the user's screen name only is phoning home or a sneaky thing. On Tue, Aug 25, 2009 at 16:20, Joseph Cheek jos...@cheek.com wrote: I agree. I've seen a lot of resistance to user apps that phone home in the past. Joseph Cheek jos...@cheek.com @cheekdotcom mcdade wrote: Thanks JDG for the advice but I wrote an App, not a webapp. The program runs on the users computer and they auth, I really don't want to do a whole i'm going to quietly send your info to me while you aren't looking. I really dislike when companies put in a some sneaky things to get the user info without the user knowing about it. Twitter really should provide a method of seeing this server side, I guess they don't. -b On Aug 25, 11:44 pm, JDG ghil...@gmail.com wrote: they do. when you get an access token, the screen name and their ID are returned to you along with the token. Use it. Store it. On Tue, Aug 25, 2009 at 15:18, mcdade bmcd...@gmail.com wrote: Bumping on this since no one answered.. And i'm up to 90 users who authed now but I have no idea who they are since i can't search my app's name. Twitter needs to create a way for Developers to track users who are using the product. Look at Facebook, they have amazing tools for the Developer -b On Aug 12, 4:33 pm, mcdade bmcd...@gmail.com wrote: Ok. So I have my app written, I usedoauthto authenticate them since it was easier the storing the password. Anyways I didn't write in anything special to trackusers(or make the follow me) but I would like to see who is using it since I had about 300 downloads on the app but have only about 58 ppl who have authenticated with twitter. Thanks -bryan oh.. and i wrote the app in Cocoa and the framework and code examples suck and mostly don't work. -- Internets. Serious business. -- Internets. Serious business. -- Internets. Serious business. -- Internets. Serious business.
[twitter-dev] Re: 408s - I'm receiving frequent 408 error messages today
Twitter, any update here? On Aug 25, 7:58 pm, David Crawford david.crawf...@gmail.com wrote: We've also received 408s today using the rest service. These are mostly posts, but also requests for number of followers (sorry I'm not more specific writing this on behalf of the dev who does the twitter integration). The failed requests were coming from ips within the range 216.168.57.171 - 179 Thanks for any help, David On Aug 25, 6:51 pm, bosher bretthell...@gmail.com wrote: Using oAuth, trying to send a direct message I'm receiving frequent 408 error messages. Is anyone else noticing an abnormal # of 408s?
[twitter-dev] Re: Stop playing around with Source parameters
This was patched yesterday afternoon. -j On Aug 25, 2009, at 11:38 PM, Costa Rica wrote: Hello Twitter, Any official word on this apparent vulnerability around the Source parameter and cross site scripting? http://www.davidnaylor.co.uk/massive-twitter-cross-site-scripting-vulnerability.html TCI On Aug 22, 9:46 am, Chad Etzel jazzyc...@gmail.com wrote: Hi All, We did not intend for the nofollow string to be included in API results. It is on our list to fix. In the meantime you will need to parse around it. Thanks, -Chad On Sat, Aug 22, 2009 at 11:20 AM, Costa Ricaticoconid...@gmail.com wrote: Thanks to all for your suggestions on how to parse, remove nofollows or extract the URL, but that's not the bottomline of my message. There are some source parameters that are posting automated crap constantly, and since I run a trending engine I continuously exclude these tweets. Yes I can parse and str replace and even base myself only on the URL, but the 2 side effects are that my processing time increase (a simple string compare vs a regex) - which becomes significant as I increase the volume I intend to process, and that the URL's themselves can easily change to workaround these filters. I will keep my simple compare - the sites are not that many and the processing toll of regex'ing this does not merit it - but I would appreciate some word from Twitter when the source parameter is being changed, or else some sourceid that is stable. R On Aug 21, 10:17 pm, TCI ticoconid...@gmail.com wrote: Recently you added nofollow's, and now you moved the nofollow after the href. Some of us filter these out and you changing them is only making it more complicated. Please make up your mind and stop changing these... a href=http://fun140.com/;Fun140/a a rel=nofollow href=http://fun140.com/;Fun140/a a href=http://fun140.com/; rel=nofollowFun140/a
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
I agree with your disagreement. The other day I was playing with a service that made a background. When I clicked done, I thought it would prompt me to save the image and I would be on my own to upload it into my account. That is not what happened. It auto replaced my background. I also did not have a backup of my original background, and now had a background I thought I was only testing, in live use. It also had a ridiculously large logo in the upper left corner. This took me by surprise, I was not aware until then that the API allowed this. It makes sense now, but the developer should warn users. That was a destructive change. If you want to say welcome @user I would go for it. I may be inclined to limit that to public accounts. If the account is blocked then they desire privacy. Holding an @username is holding something that is public outside the API. Search google for site:Twitter.com and they have a database of all @usernames as well, and they certainly did not oauth those. -- Scott Iphone says hello. On Aug 26, 2009, at 8:08 AM, JDG ghil...@gmail.com wrote: I disagree. By granting the application access to my account, I tacitly accept the fact that they can access any information that the API provides. The API returns the user's screen name every time you fetch their posts. For crying out loud, a malicious app could go through and delete your last 3200 posts without your even realizing it. You're concerned about using a piece of readily available information -- one that does not actually accurately identify you on Twitter since you can change your username at will -- for something that could probably be relatively benign (Welcome, @user!). Yes, I know there are malicious ways to use it, but there are malicious ways to use any read/write API.
[twitter-dev] Re: Stop playing around with Source parameters
John, Not according to this post: http://www.davidnaylor.co.uk/twitter-exploit-still-works.html Dewald On Aug 26, 1:09 pm, John Adams j...@twitter.com wrote: This was patched yesterday afternoon. -j On Aug 25, 2009, at 11:38 PM, Costa Rica wrote: Hello Twitter, Any official word on this apparent vulnerability around the Source parameter and cross site scripting? http://www.davidnaylor.co.uk/massive-twitter-cross-site-scripting-vul... TCI On Aug 22, 9:46 am, Chad Etzel jazzyc...@gmail.com wrote: Hi All, We did not intend for the nofollow string to be included in API results. It is on our list to fix. In the meantime you will need to parse around it. Thanks, -Chad On Sat, Aug 22, 2009 at 11:20 AM, Costa Ricaticoconid...@gmail.com wrote: Thanks to all for your suggestions on how to parse, remove nofollows or extract the URL, but that's not the bottomline of my message. There are some source parameters that are posting automated crap constantly, and since I run a trending engine I continuously exclude these tweets. Yes I can parse and str replace and even base myself only on the URL, but the 2 side effects are that my processing time increase (a simple string compare vs a regex) - which becomes significant as I increase the volume I intend to process, and that the URL's themselves can easily change to workaround these filters. I will keep my simple compare - the sites are not that many and the processing toll of regex'ing this does not merit it - but I would appreciate some word from Twitter when the source parameter is being changed, or else some sourceid that is stable. R On Aug 21, 10:17 pm, TCI ticoconid...@gmail.com wrote: Recently you added nofollow's, and now you moved the nofollow after the href. Some of us filter these out and you changing them is only making it more complicated. Please make up your mind and stop changing these... a href=http://fun140.com/;Fun140/a a rel=nofollow href=http://fun140.com/;Fun140/a a href=http://fun140.com/; rel=nofollowFun140/a
[twitter-dev] Re: Get Followers information effectively
Try using statuses/followers: http://apiwiki.twitter.com/Twitter-REST-API-Method:-statuses followers This will return full user objects for all followers of the specific user. Abraham 2009/8/24 Marc Lacoursière m...@roosoft.com Is there a way to get that kind information but for all followers of a user? http://twitter.com/users/show/roosoft.xml Some users have many thousands of followers. I would like to compute something about that information. I doubt that Twitter would appreciate me if I make thousands of call to the previous URL in one shot changing the username each call. I know it's possible to get a list of the currently logged user's followers this way but it only outputs ids. http://twitter.com/friends/ids.xml Thanks! Marc -- Abraham Williams | Community Evangelist | http://web608.org Hacker | http://abrah.am | http://twitter.com/abraham Project | http://fireeagle.labs.poseurtech.com This email is: [ ] blogable [x] ask first [ ] private. Sent from Madison, WI, United States
[twitter-dev] Re: Statuses/destroy is returning 400 even though tweet is deleted sucessfully
+1 - I am experiencing the same problem. I'm running Twitter API requests as part of a unit test for my code (HTTPBuilder- http://groovy.codehaus.org/modules/http-builder/). This has always worked fine up until a couple weeks ago. Looks like there is a bug report here: http://code.google.com/p/twitter-api/issues/detail?id=949 It might have something to do with the time between when the tweet is posted and deleted -- at least in my case, my unit test creates the tweet and deletes it just a second or two later. It could have to do with cluster propagation -- i.e. the original post hasn't been propagated to the node which is handling the 'delete.' I'm just speculating of course, but before this error cropped up, I was seeing a different behavior where sometimes the delete request would return successfully, but my tweet would remain visible. This is probably a similar root cause, except the delete occurs while the post is still propagating, and makes it to a cluster node after the delete propagates or something. I tried putting a delay of ~10s between the post and delete, and it did not seem to help... On Aug 19, 9:18 am, srikanth reddy srikanth.yara...@gmail.com wrote: yes i too encountered this (both status/destroy and direct_messages/destroy are giving 400 error but the status gets deleted successfully. The response text says something like somehow we could not delete this tweet. On Wed, Aug 19, 2009 at 3:38 PM, deepikagupta deepikaggu...@gmail.comwrote: Hi, I am facing an issue with statuses/destroy API call. It returns 400 (bad request) even though mentioned tweet id is delered sucessfully. The method was working fine few days back but started gicing trouble recently. Anyone having same trouble? Is anything wrong with this API call?
[twitter-dev] Re: Get Followers information effectively
On Wed, Aug 26, 2009 at 5:54 AM, Neilnei...@gmail.com wrote: I have an open enhancement request associated with this. http://code.google.com/p/twitter-api/issues/detail?id=917 They have said they are not going to be able to do this. It's noted in the bottom of the API v2 RoadMap document as an oft-requested feature, although even there, it doesn't appear that they have yet agreed to include it in the v2 API feature set. http://apiwiki.twitter.com/V2-Roadmap -damon -- http://twitter.com/damon
[twitter-dev] Streaming API -- Changes yesterday and today.
Various significant changes have been made to the Streaming API yesterday, and further changes should be expected today. So far we haven't observed any increased failure rates. If you notice any new failure behavior today, please post on this thread immediately, or just @jkalucki. -John Kalucki http://twitter.com/jkalucki Services, Twitter Inc.
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
I disagree. By granting the application access to my account, I tacitly accept the fact that they can access any information that the API provides. Fine. Do it to your users and see what they think about that. :) -- personal: http://www.cameronkaiser.com/ -- Cameron Kaiser * Floodgap Systems * www.floodgap.com * ckai...@floodgap.com -- What is THIS man doing here?! -- Maj. Hochstetter, Hogan's Heroes
[twitter-dev] Re: Stange 401 Not Authorized
Ditto, I'm randomly getting 401 errors On Aug 26, 10:16 am, Jesse Stay jesses...@gmail.com wrote: I'm getting these pretty regularly on one of my servers as well. Just sent Alex the HTTP response info and IP - hopefully we can figure out what's happening! Jesse On Wed, Aug 26, 2009 at 9:16 AM, Andrew Badera and...@badera.us wrote: Sometime later, or moments later? 401s, outside of rate limiting, seem to happen when the system's stressed or otherwise flaking out. Try recalling the operation 2-3 times, gently so as not to slam the servers, if you receive a 401 initially. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) 2009/8/26 Cristovão Morgado cristovao.morg...@gmail.com: I have an application using oAuth to get users timeline, mentions etc. The strangest thing is without any change some users start to get 401, and them sometime later it starts to work again. Any ideias why? CM
[twitter-dev] Streaming API -- CHANGE REQUIRED -- URL rationalization
The resources in the Streaming API have been rationalized. You'll need to update the URLs that streaming clients are using over the next two weeks. The old URLs will be deprecated on or after September 9, 2009. The change is documented in the Wiki: http://apiwiki.twitter.com/Streaming-API-Documentation, specifically in http://apiwiki.twitter.com/Streaming-API-Documentation#Methods. The new scheme allows for API versioning, streams that contain objects other than statuses, separates access level control from URLs and allows multiple filter predicates to be specified on a single connection. The cute resource names have, sadly, been dropped we move towards pushing the service out of Alpha. Also, /track and friends have been merged with /follow and friends into a single resource. When you connect to a given resource, you will automatically be given the highest access level possible. The following is a mapping from the old URLs to the new URLs. Otherwise, you should notice only subtle changes to the Streaming API error handling behavior. All other functionality should continue to work as in the past. /firehose - /1/statuses/firehose /spritzer, /gardenhose - /1/statuses/sample /birddog, /shadow, /follow - /1/statuses/filter /partner/track, /restricted/track, /track - /1/statuses/filter For example, if you have been connecting to /gardenhose.json, connect to /1/statuses/sample.json. Note that the Streaming API is still in Alpha test. -John Kalucki http://twitter.com/jkalucki Services, Twitter Inc.
[twitter-dev] Re: Stop playing around with Source parameters
Hmm, using some command line test programs I've developed, I'm still getting 'rel=nofollow'. For example: -- Public timeline 20 statusses Status 0: from HandsomeSmokes, 35229362, Mula Smokes , Brooklyn userImgURLhttp://a3.twimg.com/profile_images/372445265/IMG00064_normal.JPG (en) Wass Poppin Yall..I Go By Handsome Smokes..Im Living Life From A Whole Different Angle..If Needed Hit Me Up Aim - Smokes90z ID 3560548081 created 1 second ago in reply to 3557116376 by 25442179 (Ms_KEN_NSL) with a href=http://sidekick.com/; rel=nofollowSidekick/a (en) a href='prf?u=Ms_KEN_NSL'@Ms_KEN_NSL/a BuT Th3 OtH3r OnE iiS ThAt Th3y ZeAdAsS ThiiNk Th3y PoPPiiN WiiTh OuT Us BoYs SaYiiN ShiiT TeW Em 0 URLs ... Status 12: from petrah, 14461792, Petra Hubbeling, Amsterdam userImgURLhttp://a3.twimg.com/profile_images/341156029/collage2_normal.jpg (nl) Oprichter van Boeddhisness, netwerker op gebied van boeddhisme, marketing, communicatie, sales en recruitment. Bestuurslid Boeddhistische Unie Nederland (en) Founder of Boeddhisness, networker in terms of Buddhism, marketing, communications, sales and recruitment. Netherlands Board Buddhist Union 0.3881578947368421 ID 3560613438 created 2 seconds ago in reply to 3560539429 by 15481144 (LieveLiesje) with a href=http://www.tweetdeck.com/; rel=nofollowTweetDeck/a (nl) a href='prf?u=LieveLiesje'@LieveLiesje/a Jeemig. wat ongezellig en ik maar denken dat a href='prf? u=tonvanderhoeve'@tonvanderhoeve/a zo romantisch was, heeft hij ze niet eens bij zich? (en) a href='prf?u=LieveLiesje'@LieveLiesje/a Jeemig . some unsociable a href='prf?u=tonvanderhoeve'@tonvanderhoeve/a and I think it was so romantic, he does not agree with them? 0.5909090909090909 0 URLs ... Jim Renkel On Aug 26, 11:09 am, John Adams j...@twitter.com wrote: This was patched yesterday afternoon. -j On Aug 25, 2009, at 11:38 PM, Costa Rica wrote: Hello Twitter, Any official word on this apparent vulnerability around the Source parameter and cross site scripting? http://www.davidnaylor.co.uk/massive-twitter-cross-site-scripting-vul... TCI On Aug 22, 9:46 am, Chad Etzel jazzyc...@gmail.com wrote: Hi All, We did not intend for the nofollow string to be included in API results. It is on our list to fix. In the meantime you will need to parse around it. Thanks, -Chad On Sat, Aug 22, 2009 at 11:20 AM, Costa Ricaticoconid...@gmail.com wrote: Thanks to all for your suggestions on how to parse, remove nofollows or extract the URL, but that's not the bottomline of my message. There are some source parameters that are posting automated crap constantly, and since I run a trending engine I continuously exclude these tweets. Yes I can parse and str replace and even base myself only on the URL, but the 2 side effects are that my processing time increase (a simple string compare vs a regex) - which becomes significant as I increase the volume I intend to process, and that the URL's themselves can easily change to workaround these filters. I will keep my simple compare - the sites are not that many and the processing toll of regex'ing this does not merit it - but I would appreciate some word from Twitter when the source parameter is being changed, or else some sourceid that is stable. R On Aug 21, 10:17 pm, TCI ticoconid...@gmail.com wrote: Recently you added nofollow's, and now you moved the nofollow after the href. Some of us filter these out and you changing them is only making it more complicated. Please make up your mind and stop changing these... a href=http://fun140.com/;Fun140/a a rel=nofollow href=http://fun140.com/;Fun140/a a href=http://fun140.com/; rel=nofollowFun140/a
[twitter-dev] Re: Pass credentials to browser
Fortunately, when I tried that it didn't work. Jim On Aug 26, 11:29 am, JDG ghil...@gmail.com wrote: Yeah there is, albeit not a very nice one: You can dohttp://user:p...@site/ On Wed, Aug 26, 2009 at 09:24, Josh Roesslein jroessl...@gmail.com wrote: How is that scrapping? He is just launching IE and pointing the browser at a twitter web page for viewing. As long as he does not parse that page for data and just uses it to display that's not scrapping. Now I don't think there is a legit way of passing login credentials, that the user will have to do on there own. On Wed, Aug 26, 2009 at 8:15 AM, Stuart stut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Josh -- Internets. Serious business.
[twitter-dev] Re: Streaming API -- CHANGE REQUIRED -- URL rationalization
When does this change go into effect? -Joel On Wed, Aug 26, 2009 at 12:06 PM, John Kalucki jkalu...@gmail.com wrote: The resources in the Streaming API have been rationalized. You'll need to update the URLs that streaming clients are using over the next two weeks. The old URLs will be deprecated on or after September 9, 2009. The change is documented in the Wiki: http://apiwiki.twitter.com/Streaming-API-Documentation, specifically in http://apiwiki.twitter.com/Streaming-API-Documentation#Methods. The new scheme allows for API versioning, streams that contain objects other than statuses, separates access level control from URLs and allows multiple filter predicates to be specified on a single connection. The cute resource names have, sadly, been dropped we move towards pushing the service out of Alpha. Also, /track and friends have been merged with /follow and friends into a single resource. When you connect to a given resource, you will automatically be given the highest access level possible. The following is a mapping from the old URLs to the new URLs. Otherwise, you should notice only subtle changes to the Streaming API error handling behavior. All other functionality should continue to work as in the past. /firehose - /1/statuses/firehose /spritzer, /gardenhose - /1/statuses/sample /birddog, /shadow, /follow - /1/statuses/filter /partner/track, /restricted/track, /track - /1/statuses/filter For example, if you have been connecting to /gardenhose.json, connect to /1/statuses/sample.json. Note that the Streaming API is still in Alpha test. -John Kalucki http://twitter.com/jkalucki Services, Twitter Inc.
[twitter-dev] Socket closing getting user timeline?
I'm using the Apache HTTP Components to fetch data from Twitter and I've run across something weird. I'm requesting http://twitter.com/statuses/user_timeline.json for a given user, specifying the since_id parameter. The client starts recieving the data, but it stops at 2048 characters. As far as I can tell, it's really getting the first 2K of the data, but then it's just quitting. For example: [08/26/09 15:35:11:572] INFO Processing dcurtis (9395832) [08/26/09 15:35:13:692] INFO content length: 14051 charset: utf-8 [08/26/09 15:35:13:693] SEVERE Error at 2049 of 14051 after 0.554 [08/26/09 15:35:13:694] SEVERE Error getting status list http://twitter.com/statuses/user_timeline.json?user_id=9395832count=200since_id=3503850247 java.net.SocketException: Socket closed at java.net.SocketInputStream.socketRead0(Native Method) at java.net.SocketInputStream.read(SocketInputStream.java:129) This happens reliably and repeatable at the 2049th character. That 0.554 is the number of milliseconds that it was reading data from the socket before it got the error (give or take a nanosecond, eh?) Other API calls don't suffer from this problem, although I don't know if any of them are generating more than 2K of data. The weird thing is that I can use curl from the command line to fetch the same URL and it seems to get the whole thing just fine. Is curl perhaps recovering from an error that the Apache HTTP client should be able to recover from as well (socket closed seems pretty un- recoverable to me)? I've been using the HTTP Components library for a while now for this stuff, and this has just started being a problem in the last few days. Any help would be appreciated! Steve Green
[twitter-dev] Re: API REST problem
thanks, i did that and it work perfect!. On Aug 25, 3:40 pm, natefanaro natefan...@gmail.com wrote: There are a few status updates on @cltag that are fairly similar. If you're posting the same tweet multiple times twitter will only accept the first tweet and ignore the rest. To test this add a timestamp at the end of each tweet like this status=$mensaje.time() and try again. Instead of checking for an empty buffer you may want to use $info = curl_getinfo($curl_handle) after curl_exec() and check out that $info array. More specifically $info['http_code']. That will make debugging this and other issues a little easier for you. On Aug 25, 3:08 pm, onelix aoto...@gmail.com wrote: Hi, im using API REST for update data from a bot (@cltag), the script works fine, but, only sometimes update the timeline. When i run manually the php script it works perfectly one time, but it doesnt do it anymore in one hour or two. It use the TwitterSearch.php library. this is a piece of my code. function twittear($mensaje){ $username = 'cltag'; $password = 'password'; $url = 'http://twitter.com/statuses/update.xml'; $curl_handle = curl_init(); curl_setopt($curl_handle, CURLOPT_URL, $url); curl_setopt($curl_handle, CURLOPT_CONNECTTIMEOUT, 2); curl_setopt($curl_handle, CURLOPT_RETURNTRANSFER, 1); curl_setopt($curl_handle, CURLOPT_POST, 1); curl_setopt($curl_handle, CURLOPT_POSTFIELDS, status=$mensaje); curl_setopt($curl_handle, CURLOPT_USERPWD, $username:$password); $buffer = curl_exec($curl_handle); curl_close($curl_handle); if (empty($buffer)) { echo 'Error: mensaje vacio'; } else { echo 'Ultimo Twitt a '.$username.':br '.$mensaje; } } and then i call from another php script this funcion (the $mensaje is a string with 5 hashtags from TwitterSearch.php). Thanx!, and sorry but english is not my first language.
[twitter-dev] Search for user API
I've scoured the API documentation, but to my surprise, can't find the answer... Does the API allow search for user by first name, last name, or screen name? I'm not interested in searching for tweets from or to a user, only in searching for user profiles matching the above criteria. Thanks, -Marc
[twitter-dev] Re: heavy throttling by search.twitter.com API from GAE application
Hi Paul, If you are sharing your IP with any other GAE twitter apps that are also doing search, then you are sharing the resource at that point. The limiting is by IP first, then user-agent. Also, 1 search per second is on the borderline of the normal rate-limit anyway, so I would try calling less frequently if possible. -Chad On Wed, Aug 26, 2009 at 12:29 PM, Paul Kinlanpaul.kin...@gmail.com wrote: Hi, Just a question, I am starting to see very heavy throttling to the Twitter Search API from the Google App engine. I am receiving 503's enhance your calm very frequently. I have a custom set User-Agent string and I am probably doing less than 1 search per second. It has been happening for a couple of days now. Has there been a recent change to cause this behaviour. Paul.
[twitter-dev] General Twitter APIs question - query by application?
Hi all, This isn't specific to the app I'm building at the moment, but the recent thread on how to determine who is using your application reminded me of a general question I have about the APIs. Is there is an API call to return information about updates done via a given application? (i.e. the information which is available via the website about which application was used to post a given status update). Ideally I could see utility for queries of this form via multiple of the API's - as a filter on the streaming API's for example or as an option to filter upon via other API's calls or just as metadata inherent with each update which an app could choose whether or not to use in some manner. Ideal would be options to both positively filter and negatively filter - i.e. for an app to offer a blacklist of applications your users do not wish to see updates which were posted by those apps (but might want to see some aggregated information about what you have negatively filtered - i.e. @rycaut has 3 recent updates from PlaySpymaster which aren't displayed etc. At scale I could also see useful data for the developer community about activity usage patterns of our applications - both raw usage (i.e. # of status updates) but also diversity of usage (# of unique users, % of those users' updates per app type, etc). Potentially as well Twitter might offer aggregated data about usage patterns (perhaps only as relative usage w/o specific data) which could include patterns of usage from even accounts set private (without revealing anything about those accounts just adding their data into aggregated totals - and again if the specific data isn't shown then certain attacks on privacy could be avoided) Anyway, perhaps there are already ways to access this data, if so I'd appreciate a pointer to them, if not, I hope this sparks some discussion. Shannon Founder, Nearness Function - strategic consulting, brand advertising sponsorships Twitter - rycaut Blogs: Slow Brand - http://slowbrand.com Searching for the Moon - http://shannonclark.wordpress.com
[twitter-dev] Re: Search for user API
Use the search api On Wed, Aug 26, 2009 at 10:38 AM, Marc Andrewsbackcirc...@gmail.com wrote: I've scoured the API documentation, but to my surprise, can't find the answer... Does the API allow search for user by first name, last name, or screen name? I'm not interested in searching for tweets from or to a user, only in searching for user profiles matching the above criteria. Thanks, -Marc -- Kevin Mesiab CEO, Mesiab Labs L.L.C. http://twitter.com/kmesiab http://mesiablabs.com http://retweet.com
[twitter-dev] Re: Search for user API
http://apiwiki.twitter.com/Twitter-Search-API-Method%3A-search On Wed, Aug 26, 2009 at 10:51 AM, Kevin Mesiabke...@mesiablabs.com wrote: Use the search api On Wed, Aug 26, 2009 at 10:38 AM, Marc Andrewsbackcirc...@gmail.com wrote: I've scoured the API documentation, but to my surprise, can't find the answer... Does the API allow search for user by first name, last name, or screen name? I'm not interested in searching for tweets from or to a user, only in searching for user profiles matching the above criteria. Thanks, -Marc -- Kevin Mesiab CEO, Mesiab Labs L.L.C. http://twitter.com/kmesiab http://mesiablabs.com http://retweet.com -- Kevin Mesiab CEO, Mesiab Labs L.L.C. http://twitter.com/kmesiab http://mesiablabs.com http://retweet.com
[twitter-dev] Re: Search for user API
hi marc. nope - we don't have a method that will let you do the equivalent of find people. I've scoured the API documentation, but to my surprise, can't find the answer... Does the API allow search for user by first name, last name, or screen name? I'm not interested in searching for tweets from or to a user, only in searching for user profiles matching the above criteria. Thanks, -Marc -- Raffi Krikorian Twitter Platform Team ra...@twitter.com | @raffi
[twitter-dev] Re: get the id's of twitter users who have authenticated with OAuth?
Can't you just make the account/verify_credentials call and get back the stuff you need? On Aug 26, 11:08 am, Duane Roelands duane.roela...@gmail.com wrote: Quitter checks for updates, and like TTYtter it always asks permission and you can turn it off in the configuration menu. If your users have information that you want, ask them for it. If the information has value to you, offer something of value in return. On Aug 26, 11:02 am, Cameron Kaiser spec...@floodgap.com wrote: Here's the example: 1. You download my desktop Twitter client. 2. You install it and authorize it to your Twitter account. 3. -Without your consent or knowledge-, my Twitter client sends me your screen name. That's unethical. If you don't think so, go ahead and code that into your client and watch your users freak out when they find out that you've been collecting their personal information without your consent. Quite. Whether or not it seems logical, it's all about user perception, and most of them are not going to like apps passing on any kind of data without them opting into it. Even the version check in TTYtter is purely opt-in, and that's strictly anonymous. -- personal:http://www.cameronkaiser.com/-- Cameron Kaiser * Floodgap Systems *www.floodgap.com*ckai...@floodgap.com -- I ... I love you! Oh noo! I don't! -- Awful movie, Ranma 1/2 -
[twitter-dev] Re: Stange 401 Not Authorized
All my retry s are done some 100ms after the receiving the 401's. Another thing I've noticed is if I try to call the API for 2 users in the same instant I get a 401.. I avoid that separating call by some milliseconds... Otherwise all is fine (in 3 months I've posted 100.000 tweets) :) On Wed, Aug 26, 2009 at 4:16 PM, Andrew Badera and...@badera.us wrote: Sometime later, or moments later? 401s, outside of rate limiting, seem to happen when the system's stressed or otherwise flaking out. Try recalling the operation 2-3 times, gently so as not to slam the servers, if you receive a 401 initially. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) 2009/8/26 Cristovão Morgado cristovao.morg...@gmail.com: I have an application using oAuth to get users timeline, mentions etc. The strangest thing is without any change some users start to get 401, and them sometime later it starts to work again. Any ideias why? CM -- Cristovao Morgado aka Saintr http://www.oMeuJogoUsado.com http://www.TweetaPorSMS.com http://twitter.com/TheSaintr
[twitter-dev] Re: Stange 401 Not Authorized
If you are sending calls at the same instant, make sure to use a different nonce value for the calls or things will certainly go goofy. -Chad 2009/8/26 Cristovão Morgado cristovao.morg...@gmail.com: All my retry s are done some 100ms after the receiving the 401's. Another thing I've noticed is if I try to call the API for 2 users in the same instant I get a 401.. I avoid that separating call by some milliseconds... Otherwise all is fine (in 3 months I've posted 100.000 tweets) :) On Wed, Aug 26, 2009 at 4:16 PM, Andrew Badera and...@badera.us wrote: Sometime later, or moments later? 401s, outside of rate limiting, seem to happen when the system's stressed or otherwise flaking out. Try recalling the operation 2-3 times, gently so as not to slam the servers, if you receive a 401 initially. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) 2009/8/26 Cristovão Morgado cristovao.morg...@gmail.com: I have an application using oAuth to get users timeline, mentions etc. The strangest thing is without any change some users start to get 401, and them sometime later it starts to work again. Any ideias why? CM -- Cristovao Morgado aka Saintr http://www.oMeuJogoUsado.com http://www.TweetaPorSMS.com http://twitter.com/TheSaintr
[twitter-dev] Re: Search for user API
Not yet. It is on the roadmap: http://apiwiki.twitter.com/V2-Roadmap#Users Abraham On Wed, Aug 26, 2009 at 15:38, Marc Andrews backcirc...@gmail.com wrote: I've scoured the API documentation, but to my surprise, can't find the answer... Does the API allow search for user by first name, last name, or screen name? I'm not interested in searching for tweets from or to a user, only in searching for user profiles matching the above criteria. Thanks, -Marc -- Abraham Williams | Community Evangelist | http://web608.org Hacker | http://abrah.am | http://twitter.com/abraham Project | http://fireeagle.labs.poseurtech.com This email is: [ ] blogable [x] ask first [ ] private. Sent from Madison, WI, United States
[twitter-dev] Keep getting Invalid / used nonce, even with new nonce
I'm always getting the Invalid / used nonce error, even though I am providing a new nonce. I am 100% sure my code works, because if I remove my user cache, and the screen pops up to log into Twitter, then I immediately go to the user's timeline in my app, and everything loads: followed timeline, mentions, and DMs. However, when I close my app, and relaunch it, and go back the user's timeline again (same things are loaded: followed timeline, mentions, and DMs), but I get that Invalid / user nonce error. If my method of creating a nonce isn't always going to give me an unused one, what will? I'm currently encrypting a UUID I get from the iPhone OS, and I've tried encrypting the current time in seconds. Any other methods I should be trying? - Jason
[twitter-dev] Re: Keep getting Invalid / used nonce, even with new nonce
Hi Jason, If you have traces of the HTTP request/responses that will help diagnose what is going on. -Chad On Wed, Aug 26, 2009 at 12:51 PM, Jason Martinlegos.j...@gmail.com wrote: I'm always getting the Invalid / used nonce error, even though I am providing a new nonce. I am 100% sure my code works, because if I remove my user cache, and the screen pops up to log into Twitter, then I immediately go to the user's timeline in my app, and everything loads: followed timeline, mentions, and DMs. However, when I close my app, and relaunch it, and go back the user's timeline again (same things are loaded: followed timeline, mentions, and DMs), but I get that Invalid / user nonce error. If my method of creating a nonce isn't always going to give me an unused one, what will? I'm currently encrypting a UUID I get from the iPhone OS, and I've tried encrypting the current time in seconds. Any other methods I should be trying? - Jason
[twitter-dev] Re: Streaming API -- CHANGE REQUIRED -- URL rationalization
This change went into effect at about 3pm PST Tuesday August 25th. On Aug 26, 12:30 pm, Joel Strellner j...@twitturly.com wrote: When does this change go into effect? -Joel On Wed, Aug 26, 2009 at 12:06 PM, John Kalucki jkalu...@gmail.com wrote: The resources in the Streaming API have been rationalized. You'll need to update the URLs that streaming clients are using over the next two weeks. The old URLs will be deprecated on or after September 9, 2009. The change is documented in the Wiki: http://apiwiki.twitter.com/Streaming-API-Documentation, specifically in http://apiwiki.twitter.com/Streaming-API-Documentation#Methods. The new scheme allows for API versioning, streams that contain objects other than statuses, separates access level control from URLs and allows multiple filter predicates to be specified on a single connection. The cute resource names have, sadly, been dropped we move towards pushing the service out of Alpha. Also, /track and friends have been merged with /follow and friends into a single resource. When you connect to a given resource, you will automatically be given the highest access level possible. The following is a mapping from the old URLs to the new URLs. Otherwise, you should notice only subtle changes to the Streaming API error handling behavior. All other functionality should continue to work as in the past. /firehose - /1/statuses/firehose /spritzer, /gardenhose - /1/statuses/sample /birddog, /shadow, /follow - /1/statuses/filter /partner/track, /restricted/track, /track - /1/statuses/filter For example, if you have been connecting to /gardenhose.json, connect to /1/statuses/sample.json. Note that the Streaming API is still in Alpha test. -John Kalucki http://twitter.com/jkalucki Services, Twitter Inc.
[twitter-dev] Re: Keep getting Invalid / used nonce, even with new nonce
Anything specific you need to look at? Or do just want me to just paste in what's been sent and what's been received? - Jason On Aug 26, 2009, at 5:46 PM, Chad Etzel wrote: Hi Jason, If you have traces of the HTTP request/responses that will help diagnose what is going on. -Chad On Wed, Aug 26, 2009 at 12:51 PM, Jason Martinlegos.j...@gmail.com wrote: I'm always getting the Invalid / used nonce error, even though I am providing a new nonce. I am 100% sure my code works, because if I remove my user cache, and the screen pops up to log into Twitter, then I immediately go to the user's timeline in my app, and everything loads: followed timeline, mentions, and DMs. However, when I close my app, and relaunch it, and go back the user's timeline again (same things are loaded: followed timeline, mentions, and DMs), but I get that Invalid / user nonce error. If my method of creating a nonce isn't always going to give me an unused one, what will? I'm currently encrypting a UUID I get from the iPhone OS, and I've tried encrypting the current time in seconds. Any other methods I should be trying? - Jason
[twitter-dev] Re: General Twitter APIs question - query by application?
One could get started gathering these metrics by analyzing search queries in the vein of: feed://search.twitter.com/search.json?q=source:tweetdeck On Wed, Aug 26, 2009 at 7:03 AM, Shannon Clarkshannon.cl...@gmail.com wrote: Hi all, This isn't specific to the app I'm building at the moment, but the recent thread on how to determine who is using your application reminded me of a general question I have about the APIs. Is there is an API call to return information about updates done via a given application? (i.e. the information which is available via the website about which application was used to post a given status update). Ideally I could see utility for queries of this form via multiple of the API's - as a filter on the streaming API's for example or as an option to filter upon via other API's calls or just as metadata inherent with each update which an app could choose whether or not to use in some manner. Ideal would be options to both positively filter and negatively filter - i.e. for an app to offer a blacklist of applications your users do not wish to see updates which were posted by those apps (but might want to see some aggregated information about what you have negatively filtered - i.e. @rycaut has 3 recent updates from PlaySpymaster which aren't displayed etc. At scale I could also see useful data for the developer community about activity usage patterns of our applications - both raw usage (i.e. # of status updates) but also diversity of usage (# of unique users, % of those users' updates per app type, etc). Potentially as well Twitter might offer aggregated data about usage patterns (perhaps only as relative usage w/o specific data) which could include patterns of usage from even accounts set private (without revealing anything about those accounts just adding their data into aggregated totals - and again if the specific data isn't shown then certain attacks on privacy could be avoided) Anyway, perhaps there are already ways to access this data, if so I'd appreciate a pointer to them, if not, I hope this sparks some discussion. Shannon Founder, Nearness Function - strategic consulting, brand advertising sponsorships Twitter - rycaut Blogs: Slow Brand - http://slowbrand.com Searching for the Moon - http://shannonclark.wordpress.com -- Kevin Mesiab CEO, Mesiab Labs L.L.C. http://twitter.com/kmesiab http://mesiablabs.com http://retweet.com
[twitter-dev] Re: Keep getting Invalid / used nonce, even with new nonce
The request/response headers specifically, but the more info the better usually. -Chad On Wed, Aug 26, 2009 at 5:58 PM, Jason Martinlegos.j...@gmail.com wrote: Anything specific you need to look at? Or do just want me to just paste in what's been sent and what's been received? - Jason On Aug 26, 2009, at 5:46 PM, Chad Etzel wrote: Hi Jason, If you have traces of the HTTP request/responses that will help diagnose what is going on. -Chad On Wed, Aug 26, 2009 at 12:51 PM, Jason Martinlegos.j...@gmail.com wrote: I'm always getting the Invalid / used nonce error, even though I am providing a new nonce. I am 100% sure my code works, because if I remove my user cache, and the screen pops up to log into Twitter, then I immediately go to the user's timeline in my app, and everything loads: followed timeline, mentions, and DMs. However, when I close my app, and relaunch it, and go back the user's timeline again (same things are loaded: followed timeline, mentions, and DMs), but I get that Invalid / user nonce error. If my method of creating a nonce isn't always going to give me an unused one, what will? I'm currently encrypting a UUID I get from the iPhone OS, and I've tried encrypting the current time in seconds. Any other methods I should be trying? - Jason
[twitter-dev] Re: heavy throttling by search.twitter.com API from GAE application
Hi Chad, Has this limit changed recently? I used to query it far more frequently from the app engine. Obviously, Google use a lot of different IP addresses so I presuming it can fluctuate. But over the last couple of days I have noticed far more that I used to get. If it is by IP first what is the point of using the User-Agent (it was stated a little while back that we must include it now for rate limiting) - is it just for tracking of an application? Paul 2009/8/26 Chad Etzel c...@twitter.com Hi Paul, If you are sharing your IP with any other GAE twitter apps that are also doing search, then you are sharing the resource at that point. The limiting is by IP first, then user-agent. Also, 1 search per second is on the borderline of the normal rate-limit anyway, so I would try calling less frequently if possible. -Chad On Wed, Aug 26, 2009 at 12:29 PM, Paul Kinlanpaul.kin...@gmail.com wrote: Hi, Just a question, I am starting to see very heavy throttling to the Twitter Search API from the Google App engine. I am receiving 503's enhance your calm very frequently. I have a custom set User-Agent string and I am probably doing less than 1 search per second. It has been happening for a couple of days now. Has there been a recent change to cause this behaviour. Paul.
[twitter-dev] White Listing Application
I have applied to be white listed for authenticating Twitter Users and the response I received was: Thanks for requesting to be on Twitter's API whitelist. Unfortunately, we've rejected your request. Here's why: This was completely blank Please address the issues above and submit another request if appropriate. The Twitter API Team Please do not reply to this message; it was sent from an unmonitored email address. This message is a service email related to your use of Twitter. For general inquiries or to request support with your Twitter account, please visit us at Twitter Support. I have no idea why I was rejected or how to correct my submission so as not to receive the same result. I also have not found any way to actually contact someone at Twitter to ask the question. Any thoughts you all can offer would be most appreciated. Steve
[twitter-dev] Re: General Twitter APIs question - query by application?
Hi Kevin, That query will fail. You must specify a query along with the source: operator to get any results. We realize this does not allow for a full result set of tweets from a source, but this limitation is in place to not crush the system. Thanks, -Chad On Wed, Aug 26, 2009 at 6:12 PM, Kevin Mesiabke...@mesiablabs.com wrote: One could get started gathering these metrics by analyzing search queries in the vein of: feed://search.twitter.com/search.json?q=source:tweetdeck On Wed, Aug 26, 2009 at 7:03 AM, Shannon Clarkshannon.cl...@gmail.com wrote: Hi all, This isn't specific to the app I'm building at the moment, but the recent thread on how to determine who is using your application reminded me of a general question I have about the APIs. Is there is an API call to return information about updates done via a given application? (i.e. the information which is available via the website about which application was used to post a given status update). Ideally I could see utility for queries of this form via multiple of the API's - as a filter on the streaming API's for example or as an option to filter upon via other API's calls or just as metadata inherent with each update which an app could choose whether or not to use in some manner. Ideal would be options to both positively filter and negatively filter - i.e. for an app to offer a blacklist of applications your users do not wish to see updates which were posted by those apps (but might want to see some aggregated information about what you have negatively filtered - i.e. @rycaut has 3 recent updates from PlaySpymaster which aren't displayed etc. At scale I could also see useful data for the developer community about activity usage patterns of our applications - both raw usage (i.e. # of status updates) but also diversity of usage (# of unique users, % of those users' updates per app type, etc). Potentially as well Twitter might offer aggregated data about usage patterns (perhaps only as relative usage w/o specific data) which could include patterns of usage from even accounts set private (without revealing anything about those accounts just adding their data into aggregated totals - and again if the specific data isn't shown then certain attacks on privacy could be avoided) Anyway, perhaps there are already ways to access this data, if so I'd appreciate a pointer to them, if not, I hope this sparks some discussion. Shannon Founder, Nearness Function - strategic consulting, brand advertising sponsorships Twitter - rycaut Blogs: Slow Brand - http://slowbrand.com Searching for the Moon - http://shannonclark.wordpress.com -- Kevin Mesiab CEO, Mesiab Labs L.L.C. http://twitter.com/kmesiab http://mesiablabs.com http://retweet.com
[twitter-dev] Re: Pass credentials to browser
2009/8/26 JDG ghil...@gmail.com: Yeah there is, albeit not a very nice one: You can do http://user:p...@site/ That will only work with the API. The main site (and mobile site) uses session-based authentication, not basic. -Stuart -- http://stut.net/projects/twitter/ On Wed, Aug 26, 2009 at 09:24, Josh Roesslein jroessl...@gmail.com wrote: How is that scrapping? He is just launching IE and pointing the browser at a twitter web page for viewing. As long as he does not parse that page for data and just uses it to display that's not scrapping. Now I don't think there is a legit way of passing login credentials, that the user will have to do on there own. On Wed, Aug 26, 2009 at 8:15 AM, Stuart stut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Josh -- Internets. Serious business.
[twitter-dev] Re: Pass credentials to browser
2009/8/26 Joseph Cheek jos...@cheek.com: it doesn't appear that he's scraping at all. he's just starting a process to show the user's twitter page and wants to have the user logged in already. Quite right too - I didn't read it properly. Sorry. Unfortunately there's no way to automatically log in to Twitter without simulating all the requests involved in signing in to the site. Not impossible, but long-winded and that process could be changed by Twitter at any time. -Stuart -- http://stut.net/projects/twitter/ Andrew Badera wrote: Actually ... IS that PocketIE, or is that Internet Explorer on a desktop? If desktop, why are you scraping the mobile page? On Wed, Aug 26, 2009 at 9:27 AM, Andrew Baderaand...@badera.us wrote: Not HIS IP -- that's a client process there. That will be spread around individual client IPs, which being mobile are probably highly dynamic. ∞ Andy Badera ∞ This email is: [ ] bloggable [x] ask first [ ] private ∞ Google me: http://www.google.com/search?q=(andrew+badera)+OR+(andy+badera) On Wed, Aug 26, 2009 at 9:15 AM, Stuartstut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Joseph Cheek jos...@cheek.com, www.cheek.com twitter: http://twitter.com/cheekdotcom
[twitter-dev] Re: API: How do you find when someone started following you?
You can't On Wed, Aug 26, 2009 at 15:13, CWG craiggo...@gmail.com wrote: Is there any way through the API or alternate means to discover when your followers started following you? -- Internets. Serious business.
[twitter-dev] Re: White Listing Application
Hi Steve, It was discovered yesterday that recent whitelist rejections were going out without the reason attached (this is a big bummer). If you can tell me the username you used to submit the whitelist request I can lookup the reason and send it to you off-list. Thanks, -Chad On Wed, Aug 26, 2009 at 5:44 PM, sctoyt...@beema.com wrote: I have applied to be white listed for authenticating Twitter Users and the response I received was: Thanks for requesting to be on Twitter's API whitelist. Unfortunately, we've rejected your request. Here's why: This was completely blank Please address the issues above and submit another request if appropriate. The Twitter API Team Please do not reply to this message; it was sent from an unmonitored email address. This message is a service email related to your use of Twitter. For general inquiries or to request support with your Twitter account, please visit us at Twitter Support. I have no idea why I was rejected or how to correct my submission so as not to receive the same result. I also have not found any way to actually contact someone at Twitter to ask the question. Any thoughts you all can offer would be most appreciated. Steve
[twitter-dev] Re: API: How do you find when someone started following you?
Hi, No, there is currently no way to find this information through the API. If you have email notifications enabled then you could look at the timestamp thereof. Of course that only works for your personal accounts. Doing this on another user's behalf isn't possible through the API. -Chad On Wed, Aug 26, 2009 at 5:13 PM, CWGcraiggo...@gmail.com wrote: Is there any way through the API or alternate means to discover when your followers started following you?
[twitter-dev] Re: Keep getting Invalid / used nonce, even with new nonce
Aright, here's one set of request/response headers: Request: { Authorization = OAuth realm='', oauth_consumer_key='tJdfiGin0BMT7Qugbj787g', oauth_signature_method='HMAC-SHA1', oauth_signature='J %2BgLcaHUvLolHv2eZdpDJWSzumM%3D', oauth_timestamp='1251325616', oauth_nonce='83a0141dd608569dc22b037e3b5fbe606ebd845f', oauth_version='1.0'; } Response: { Cache-Control = no-cache, max-age=300; Connection = close; Content-Encoding = gzip; Content-Length = 88; Content-Type = application/json; charset=utf-8; Date = Wed, 26 Aug 2009 22:26:58 GMT; Expires = Wed, 26 Aug 2009 22:31:58 GMT; Server = hi; Set-Cookie = _twitter_sess =BAh7ByIKZmxhc2hJQzonQWN0aW9uQ29udHJvbGxlcjo6Rmxhc2g6OkZsYXNo %250ASGFzaHsABjoKQHVzZWR7ADoHaWQiJWEzYzdlN2I5NzhhMmVjZGI1YWVjYTU4 %250AODgxYjc5YmE2--64d7889886ab87d71ab67936215e1d51fcb99de9; domain=.twitter.com; path=/; Status = 401 Unauthorized; Vary = Accept-Encoding; Www-Authenticate = Basic realm='Twitter API'; } And the response body: {request:/statuses/replies.json,error:Invalid / used nonce} Lemme know if you need anything else. - Jason On Aug 26, 2009, at 6:05 PM, Chad Etzel wrote: The request/response headers specifically, but the more info the better usually. -Chad On Wed, Aug 26, 2009 at 5:58 PM, Jason Martinlegos.j...@gmail.com wrote: Anything specific you need to look at? Or do just want me to just paste in what's been sent and what's been received? - Jason On Aug 26, 2009, at 5:46 PM, Chad Etzel wrote: Hi Jason, If you have traces of the HTTP request/responses that will help diagnose what is going on. -Chad On Wed, Aug 26, 2009 at 12:51 PM, Jason Martinlegos.j...@gmail.com wrote: I'm always getting the Invalid / used nonce error, even though I am providing a new nonce. I am 100% sure my code works, because if I remove my user cache, and the screen pops up to log into Twitter, then I immediately go to the user's timeline in my app, and everything loads: followed timeline, mentions, and DMs. However, when I close my app, and relaunch it, and go back the user's timeline again (same things are loaded: followed timeline, mentions, and DMs), but I get that Invalid / user nonce error. If my method of creating a nonce isn't always going to give me an unused one, what will? I'm currently encrypting a UUID I get from the iPhone OS, and I've tried encrypting the current time in seconds. Any other methods I should be trying? - Jason
[twitter-dev] Re: Pass credentials to browser
touche On Wed, Aug 26, 2009 at 16:06, Stuart stut...@gmail.com wrote: 2009/8/26 JDG ghil...@gmail.com: Yeah there is, albeit not a very nice one: You can do http://user:p...@site/ That will only work with the API. The main site (and mobile site) uses session-based authentication, not basic. -Stuart -- http://stut.net/projects/twitter/ On Wed, Aug 26, 2009 at 09:24, Josh Roesslein jroessl...@gmail.com wrote: How is that scrapping? He is just launching IE and pointing the browser at a twitter web page for viewing. As long as he does not parse that page for data and just uses it to display that's not scrapping. Now I don't think there is a legit way of passing login credentials, that the user will have to do on there own. On Wed, Aug 26, 2009 at 8:15 AM, Stuart stut...@gmail.com wrote: 2009/8/26 balu reghu baluk...@gmail.com: Hi all, Can i pass my credentials to browser.I am working on a twitter application. On a click i am trying to show the twitter site. If i have the credentials with me.Can i make the user view his tweets without login (again) this is my code on a click Process.Start(@\Windows\iexplore.exe, http://m.twitter.com/search/ users?q= + tbsearch.Text); In this case the browser will show a popup .asking for user name and password.Is there any way to pass the credentials? That is not an API call so what you're doing is scraping the Twitter site. They don't like you doing that and it will likely get your IP blocked if you keep doing it. -Stuart -- http://stut.net/projects/twitter/ -- Josh -- Internets. Serious business. -- Internets. Serious business.
[twitter-dev] Re: Keep getting Invalid / used nonce, even with new nonce
Hi Jason, The API endpoint and all other parameters sent with the request would be helpful. Thanks, -Chad On Wed, Aug 26, 2009 at 7:15 PM, Jason Martinlegos.j...@gmail.com wrote: Aright, here's one set of request/response headers: Request: { Authorization = OAuth realm='', oauth_consumer_key='tJdfiGin0BMT7Qugbj787g', oauth_signature_method='HMAC-SHA1', oauth_signature='J%2BgLcaHUvLolHv2eZdpDJWSzumM%3D', oauth_timestamp='1251325616', oauth_nonce='83a0141dd608569dc22b037e3b5fbe606ebd845f', oauth_version='1.0'; } Response: { Cache-Control = no-cache, max-age=300; Connection = close; Content-Encoding = gzip; Content-Length = 88; Content-Type = application/json; charset=utf-8; Date = Wed, 26 Aug 2009 22:26:58 GMT; Expires = Wed, 26 Aug 2009 22:31:58 GMT; Server = hi; Set-Cookie = _twitter_sess=BAh7ByIKZmxhc2hJQzonQWN0aW9uQ29udHJvbGxlcjo6Rmxhc2g6OkZsYXNo%250ASGFzaHsABjoKQHVzZWR7ADoHaWQiJWEzYzdlN2I5NzhhMmVjZGI1YWVjYTU4%250AODgxYjc5YmE2--64d7889886ab87d71ab67936215e1d51fcb99de9; domain=.twitter.com; path=/; Status = 401 Unauthorized; Vary = Accept-Encoding; Www-Authenticate = Basic realm='Twitter API'; } And the response body: {request:/statuses/replies.json,error:Invalid / used nonce} Lemme know if you need anything else. - Jason On Aug 26, 2009, at 6:05 PM, Chad Etzel wrote: The request/response headers specifically, but the more info the better usually. -Chad On Wed, Aug 26, 2009 at 5:58 PM, Jason Martinlegos.j...@gmail.com wrote: Anything specific you need to look at? Or do just want me to just paste in what's been sent and what's been received? - Jason On Aug 26, 2009, at 5:46 PM, Chad Etzel wrote: Hi Jason, If you have traces of the HTTP request/responses that will help diagnose what is going on. -Chad On Wed, Aug 26, 2009 at 12:51 PM, Jason Martinlegos.j...@gmail.com wrote: I'm always getting the Invalid / used nonce error, even though I am providing a new nonce. I am 100% sure my code works, because if I remove my user cache, and the screen pops up to log into Twitter, then I immediately go to the user's timeline in my app, and everything loads: followed timeline, mentions, and DMs. However, when I close my app, and relaunch it, and go back the user's timeline again (same things are loaded: followed timeline, mentions, and DMs), but I get that Invalid / user nonce error. If my method of creating a nonce isn't always going to give me an unused one, what will? I'm currently encrypting a UUID I get from the iPhone OS, and I've tried encrypting the current time in seconds. Any other methods I should be trying? - Jason
[twitter-dev] Re: twitter based message board
While not a twitter message board, this system uses the authorized twitter username to allow users to post threads and reply to current threads. http://a.tinythread.com On Wed, Aug 26, 2009 at 5:58 PM, Peter Denton petermden...@gmail.comwrote: Hello, Has anyone created a twitter account based message board? I am building out a service and want users to be able to post forum questions, etc form the app. Im not looking for anything special, just want them to be able to communicate after already authenticating with the system. Thought I would ping everyone and see if anyone has done anything similar? Thanks Peter -- - Adam Shannon ( http://ashannon.us )
[twitter-dev] Re: Streaming API -- CHANGE REQUIRED -- URL rationalization
Will the streaming API ever expose tweets from protected users?--or is it an infrastructure limitation that isn't going away anytime soon? Also, will we ever see the ability to get real time tweets based on search operators (http://search.twitter.com/operators)? On Aug 26, 3:06 pm, John Kalucki jkalu...@gmail.com wrote: The resources in the Streaming API have been rationalized. You'll need to update the URLs that streaming clients are using over the next two weeks. The old URLs will be deprecated on or after September 9, 2009. The change is documented in the Wiki:http://apiwiki.twitter.com/Streaming-API-Documentation, specifically inhttp://apiwiki.twitter.com/Streaming-API-Documentation#Methods. The new scheme allows for API versioning, streams that contain objects other than statuses, separates access level control from URLs and allows multiple filter predicates to be specified on a single connection. The cute resource names have, sadly, been dropped we move towards pushing the service out of Alpha. Also, /track and friends have been merged with /follow and friends into a single resource. When you connect to a given resource, you will automatically be given the highest access level possible. The following is a mapping from the old URLs to the new URLs. Otherwise, you should notice only subtle changes to the Streaming API error handling behavior. All other functionality should continue to work as in the past. /firehose - /1/statuses/firehose /spritzer, /gardenhose - /1/statuses/sample /birddog, /shadow, /follow - /1/statuses/filter /partner/track, /restricted/track, /track - /1/statuses/filter For example, if you have been connecting to /gardenhose.json, connect to /1/statuses/sample.json. Note that the Streaming API is still in Alpha test. -John Kaluckihttp://twitter.com/jkalucki Services, Twitter Inc.
[twitter-dev] Re: Search for user API
Thanks Abraham, that's the answer I was looking for. Appreciate it. Kevin, the search API is exactly what I don't want, but I appreciate you taking the time to make an attempt at answering. I'll get by with users/show?screen_name=... in the REST API. Thanks, -Marc On Aug 26, 1:45 pm, Abraham Williams 4bra...@gmail.com wrote: Not yet. It is on the roadmap:http://apiwiki.twitter.com/V2-Roadmap#Users Abraham On Wed, Aug 26, 2009 at 15:38, Marc Andrews backcirc...@gmail.com wrote: I've scoured the API documentation, but to my surprise, can't find the answer... Does the API allow search for user by first name, last name, or screen name? I'm not interested in searching for tweets from or to a user, only in searching for user profiles matching the above criteria. Thanks, -Marc -- Abraham Williams | Community Evangelist |http://web608.org Hacker |http://abrah.am|http://twitter.com/abraham Project |http://fireeagle.labs.poseurtech.com This email is: [ ] blogable [x] ask first [ ] private. Sent from Madison, WI, United States
[twitter-dev] blocks/exists q
blocks/exists tells if i am blocking a user - is there a way to tell if a user is blocking me? Joseph Cheek jos...@cheek.com, www.cheek.com twitter: http://twitter.com/cheekdotcom
[twitter-dev] Re: Can someone suggest a VB.NET Twitter API Interface that works?
try replacing the space character with + so before setting your update something like this tweet = Replace(tweet, ,+) the problem you are having is probably related to url encoding of the transmitted message On Aug 13, 7:23 pm, catcalls g.obrzut3...@ntlworld.com wrote: Oh, the problem is the DLL. I mean, how many ways can you encode a space? I can use the DLL to search, follow, and update a single word to my twitter account - but as soon as I use a space it fails. Believe me, it's the DLL. Furthermore, the update to the DLL (which he claims works) does not compile on my machine. Finally, I am his client, because I am using his wares. If you are coding for yourself, you do not release it onto the net. You only do that to get people like me, as clients. I offer support on all my open source work. I frequently release code - but the difference is - I test my code before release. As for your other suggestions - they are BETA - I want something that actually works and is at least 1.0 On Aug 13, 11:27 pm, Mark Turner m...@amerine.net wrote: On Thu, Aug 13, 2009 at 2:48 PM, catcallsg.obrzut3...@ntlworld.com wrote: I've been using a free Twitter API Interface that was coded in C# and I imported the DLL and it was working fine until I discovered I cannot post spaces to twitter updates! I mean, WHAT!? I'm willing to bet that the problem is not the DLL. So, I have basically coded this application with full interaction with this DLL and wasted the past three days of my time because the original coder was too lazy to get it to work for his clients. Rude. If you got it for free don't complain, nobody works on open-source/free libraries for anyone but themselves. The take the time out of their day to package it up and put it out there so other people can try to save time or headache or use their sweet ass code. They don't have to help you in any way, shape or form unless the choose to do so. And I sincerely doubt he would call you his 'client'. So, can someone recommend a library that they used and was really pleased with - I don't mind paying a small fee for something that actually works you see. I have a complete app coded that just needs the API Interface to work. I tried rewriting some OAuth code but kept getting nonce errors so I gave up. I might go back to that again though if this request fails as a last resort. A whole four seconds of googling brought up a page full of libraries and examples in a large amount of languages including .net ones. http://oauth.net/code And here is something that look promising: Main:http://code.google.com/p/oauth-dot-net/ Source:http://code.google.com/p/oauth-dot-net/wiki/SourceNotice?tm=4 Docs:http://lab.madgex.com/oauth-net/gettingatarted01.aspx/ Demos:http://lab.madgex.com/oauth-net/ Would you please stop asking for oauth+vb.net help here, its clogging up the 7gb that google gives me. Head over tohttp://oauth.netfor help.- Hide quoted text - - Show quoted text -
[twitter-dev] Re: blocks/exists q
blocks/exists tells if i am blocking a user - is there a way to tell if a user is blocking me? No, and I would be very unhappy if such an operation existed. Stealth blocking should always be an option. -- personal: http://www.cameronkaiser.com/ -- Cameron Kaiser * Floodgap Systems * www.floodgap.com * ckai...@floodgap.com -- Well done is better than well said. -- Benjamin Franklin ---
[twitter-dev] Re: Socket closing getting user timeline?
On Aug 26, 3:49 pm, Steve eelstretch...@gmail.com wrote: I'm using the Apache HTTP Components to fetch data from Twitter and I've run across something weird. I'm requestinghttp://twitter.com/statuses/user_timeline.jsonfor a given user, OK. Duh. Pilot error and I'm dumb. I blame the cold I've been fighting. Steve Green
[twitter-dev] Re: Socket closing getting user timeline?
Hi Steve, What was the solution? -Chad On Wed, Aug 26, 2009 at 11:07 PM, Steveeelstretch...@gmail.com wrote: On Aug 26, 3:49 pm, Steve eelstretch...@gmail.com wrote: I'm using the Apache HTTP Components to fetch data from Twitter and I've run across something weird. I'm requestinghttp://twitter.com/statuses/user_timeline.jsonfor a given user, OK. Duh. Pilot error and I'm dumb. I blame the cold I've been fighting. Steve Green
[twitter-dev] Re: Streaming API -- CHANGE REQUIRED -- URL rationalization
I would hope they never expose protected tweets -- if they did, what would be ... you know, the point of it all? On Wed, Aug 26, 2009 at 17:02, Kevin Watters kevinwatt...@gmail.com wrote: Will the streaming API ever expose tweets from protected users?--or is it an infrastructure limitation that isn't going away anytime soon? Also, will we ever see the ability to get real time tweets based on search operators (http://search.twitter.com/operators)? On Aug 26, 3:06 pm, John Kalucki jkalu...@gmail.com wrote: The resources in the Streaming API have been rationalized. You'll need to update the URLs that streaming clients are using over the next two weeks. The old URLs will be deprecated on or after September 9, 2009. The change is documented in the Wiki: http://apiwiki.twitter.com/Streaming-API-Documentation, specifically inhttp:// apiwiki.twitter.com/Streaming-API-Documentation#Methods. The new scheme allows for API versioning, streams that contain objects other than statuses, separates access level control from URLs and allows multiple filter predicates to be specified on a single connection. The cute resource names have, sadly, been dropped we move towards pushing the service out of Alpha. Also, /track and friends have been merged with /follow and friends into a single resource. When you connect to a given resource, you will automatically be given the highest access level possible. The following is a mapping from the old URLs to the new URLs. Otherwise, you should notice only subtle changes to the Streaming API error handling behavior. All other functionality should continue to work as in the past. /firehose - /1/statuses/firehose /spritzer, /gardenhose - /1/statuses/sample /birddog, /shadow, /follow - /1/statuses/filter /partner/track, /restricted/track, /track - /1/statuses/filter For example, if you have been connecting to /gardenhose.json, connect to /1/statuses/sample.json. Note that the Streaming API is still in Alpha test. -John Kaluckihttp://twitter.com/jkalucki Services, Twitter Inc. -- Internets. Serious business.
[twitter-dev] Best way to get tweets from me, to me, mentioning me
Hello, what is the best way to get tweets that are from me OR to me OR mentioning me? I have been playing with with search API: feed://search.twitter.com/search.atom?q=from:some_user+...@some_user I believe that does what I want, but was not sure if the search API is the best place to be making these calls. In some ways, this is similar to the widgets that people shove into their blogs. My goal will be to not hassle the user with entering in their login/pass, so oauth is out for this one. All these requests will come from one server, maybe more if the service grows :) I assume I will need to apply for whitelisting? Or is the search API pretty lenient on requests? If there is a specific API call, or combination of them I should be using, and then request whitelisting, I am not objectionable, as I personally have found non search API based calls to return more reliable results. Thank you for any suggestions and guidance. -- Scott * If you contact me off list replace talklists@ with scott@ *
[twitter-dev] Re: Best way to get tweets from me, to me, mentioning me
Thanks. These users will be mobile, largely, and asking them to log in to see what will amount to comments is asking too much. This is more a add on feature that some may find value in. Looks like search it is. On Aug 26, 2009, at 9:41 PM, Raffi Krikorian wrote: if you were to allow people to log in, then there are a few great API methods /statuses/friends_timeline /statuses/mentions those would do exactly what you want. unfortunately, you're right, without logging in, you're only left with the search API. your query seems like the best one, and the one that i would use. Hello, what is the best way to get tweets that are from me OR to me OR mentioning me? I have been playing with with search API: feed://search.twitter.com/search.atom?q=from:some_user+...@some_user I believe that does what I want, but was not sure if the search API is the best place to be making these calls. In some ways, this is similar to the widgets that people shove into their blogs. My goal will be to not hassle the user with entering in their login/pass, so oauth is out for this one. All these requests will come from one server, maybe more if the service grows :) I assume I will need to apply for whitelisting? Or is the search API pretty lenient on requests? If there is a specific API call, or combination of them I should be using, and then request whitelisting, I am not objectionable, as I personally have found non search API based calls to return more reliable results. -- Scott * If you contact me off list replace talklists@ with scott@ *