On Sun, May 02, 2010 at 07:12:00PM -0700, Mr-Yellow wrote:
> oAuth Core 1.0
> "Service Providers SHOULD allow Users to revoke Access Tokens."
>
> Without this end-point it's impossible for users to disconnect a
> twitter account.
>
> If a user links the wrong account then wishes to remove this li
On Wed, Apr 21, 2010 at 13:55, Dean Collins wrote:
> You already got provided those exaples you chose to steam roller over them.
>
>
>
> Basically same response when I said why restrict client apps runnign on
> desktops to oath if basic auth does the job and as a desktop client doesn’t
> have the
One example where it would be useful:
I'm trying to troubleshoot a problem with a currently authorized user. The
same token and secret are pulled from Twitter each time during the oAuth
process, but any calls to the Twitter API respond with "unauthorized."
I asked the user to revoke access to my
On Wed, Apr 21, 2010 at 13:32, Caliban Darklock
wrote:
It may seem stupid to revoke the access, but in a tiny minority of
cases it may be clever, and for that reason alone you may want to
consider including it.
And what are those cases? If I was Twitter I would not provide such a
case until som
On Wed, Apr 21, 2010 at 13:32, Caliban Darklock wrote:
> It may seem stupid to revoke the access, but in a tiny minority of
> cases it may be clever, and for that reason alone you may want to
> consider including it.
>
And what are those cases? If I was Twitter I would not provide such a case
un
On Wed, Apr 21, 2010 at 12:13 PM, Abraham Williams <4bra...@gmail.com> wrote:
>
> If they light bulb had no cost (such as electricity) and automatically turns
> on when needed why would you turn the light switch off?
Because the light bulb comes on when you would like it to stay off, obviously.
W
I don't agree with your analogy. You seem to imply the utility of revoking
access is in the symmetry of matching API methods. If they light bulb had no
cost (such as electricity) and automatically turns on when needed why would
you turn the light switch off? There is a slight utility in that a user
Robbie, totally agree.
+1
Considering basic auth is being revoked in less than 45 days it seems twitter
hasn't really thought this through.
Cheers,
Dean
-Original Message-
From: twitter-development-talk@googlegroups.com
[mailto:twitter-development-t...@googlegroups.com] On B
Ya. I was surprised when that change was made.
Abraham
On Tue, Apr 20, 2010 at 23:04, Andy Freeman wrote:
> While I may not want to revoke access for a key, I don't want to leave
> folks logged into twitter if they use my application from a shared
> computer. (And no, asking them to log out fr