[twitter-dev] Re: How to change the 'sent from web'

2009-10-03 Thread ryan alford
You have to use the OAuth process for the user to authorize your application. There is no way around this. On Oct 3, 2009, at 4:02 PM, todd434 todd...@googlemail.com wrote: In that case can you tell me how to authorize my application without going through pages of code in OAuth?

[twitter-dev] Re: Chage from on tweets

2009-10-04 Thread ryan alford
Twitter removed that functionality just recently. Any application that used if before it was removed is still allowed to use it. On Oct 5, 2009, at 12:07 AM, Vincent Nguyen kureik...@gmail.com wrote: We knew is to change from on tweets, we must use Oauth! But i see desktop client such as

[twitter-dev] Re: Account Owner's last tweet

2009-10-06 Thread ryan alford
The user timeline returns only the user's tweets for me. On Oct 6, 2009, at 1:27 AM, JK jam...@slip.net wrote: What api do I use to identify the last or latest tweet of the account owner? http://twitter.com/users/show could contain a tweet by a follower.

[twitter-dev] Re: Account Owner's last tweet

2009-10-06 Thread ryan alford
At the time I am reading this, when viewing his actual page, his last tweet is shown as Takin of And when viewing the link you gave, that's the same tweet that I see. Also, the tweet you referenced was posted by TO in reply to a follower. That's TO's actual tweet. Look at his page.

[twitter-dev] Re: Registered app under wrong twitter account?

2009-10-06 Thread ryan alford
You can delete registered applications from the Edit Application Settings screen. Ryan On Tue, Oct 6, 2009 at 2:51 PM, Amicus ram@gmail.com wrote: I'd also like to know what the official Twitter policy/recommendation is. I don't see any UI options to delete the registration of an app.

[twitter-dev] Re: [twitter Dev] Failed to validate oauth signature and token

2009-10-06 Thread ryan alford
The signature needs to be at the end of the URL, not sorted with the other parameters. On Oct 6, 2009, at 11:47 PM, uookeng loque1...@nate.com wrote: I am trying to run a sample app but i am getting 401 error during request_token phase. Failed to validate oauth signature and token

[twitter-dev] Re: [twitter Dev] Failed to validate oauth signature and token

2009-10-07 Thread ryan alford
, the request is successful. On Wed, Oct 7, 2009 at 8:14 AM, JDG ghil...@gmail.com wrote: That's simply for generating the signature base string. it does not matter when you're actually sending the parameters. On Wed, Oct 7, 2009 at 05:33, ryan alford ryanalford...@gmail.com wrote: Here

[twitter-dev] Re: Authenticate with Twitter - impossible? (Without giving access to account)

2009-10-08 Thread ryan alford
An OAuth client can either have Read-only access or Read/Write access to an account. So this gives the ability to read statuses/friends withou having the ability to post. On Oct 8, 2009, at 5:43 AM, Bjoern bjoer...@googlemail.com wrote: Hi, just wondering if I read this right: while OAuth

[twitter-dev] Re: Authenticate with Twitter - impossible? (Without giving access to account)

2009-10-08 Thread ryan alford
While I haven't used the Sign-In-With-Twitter, I would assume it still uses the same OAuth system, which allows either read-only or read/ write access. I could be wrong though. On Oct 8, 2009, at 6:20 AM, Andrew Badera and...@badera.us wrote: Sign-in with Twitter with Read access only? ∞

[twitter-dev] Re: Authenticate with Twitter - impossible? (Without giving access to account)

2009-10-08 Thread ryan alford
Here is a screenshot of the bottom of the OAuth Application Registration page. http://img43.imageshack.us/img43/6936/108200974258am.png On Thu, Oct 8, 2009 at 7:01 AM, Andrew Badera and...@badera.us wrote: Sign-in-with-Twitter: http://apiwiki.twitter.com/Sign-in-with-Twitter Read-only

[twitter-dev] Re: following and followers null

2009-10-08 Thread ryan alford
It seems that Twitter has been having some problems today. You also may notice that not tweets have been displaying for about 3 hours now. On Thu, Oct 8, 2009 at 12:26 PM, vj_varga daniel.va...@gmail.com wrote: Hi, Today my following and followers change for null. vj_varga

[twitter-dev] Re: I have a problem with update my status across API

2009-10-09 Thread ryan alford
I think it's just the REST methods hiccuping. I've have this happen like twice. On Oct 9, 2009, at 4:02 AM, gonandriy gonand...@gmail.com wrote: When I try update my status sometimes I have success, but sometimes status not updated and I receive empty response and http code is 0 I have no

[twitter-dev] Re: I have a problem with update my status across API

2009-10-09 Thread ryan alford
What about an empty response? I get it from my .Net API. I've only had it happen twice. On Fri, Oct 9, 2009 at 6:21 AM, Abraham Williams 4bra...@gmail.com wrote: 0 is a common result when PHP and cURL can not connect to Twitter. Abraham On Fri, Oct 9, 2009 at 05:10, ryan alford ryanalford

[twitter-dev] Re: Issue with API?

2009-10-10 Thread ryan alford
I started thinking that also, but the twitter website shows this person as a follower of mine. So the tag should show as true, correct? On Oct 10, 2009, at 12:03 PM, Dewald Pretorius dpr...@gmail.com wrote: In the authenticated friends timeline, I believe following tells you whether that

[twitter-dev] Re: Why am I receiving an error saying I hit the rate limit?

2009-10-11 Thread ryan alford
If you do the math, just the one account doing 25 updates ever half hour(50 updates on hour) * 24 hours, that's 1200 updates a day. So it seems pretty obvious that you are hitting that 1000 update limit with just that one account. On Oct 11, 2009, at 10:54 AM, Abraham Williams 4bra...@gmail.com

[twitter-dev] Re: HTTP Server Error 503 No available server to handle this request

2009-10-12 Thread ryan alford
Thanks Dewalt. I was beginning to think something was wrong with my app. Atleast I know I am not the only one seeing these slow downs. Ryan On Mon, Oct 12, 2009 at 3:26 PM, Dewald Pretorius dpr...@gmail.com wrote: Their system must just be overloaded at the moment. I have been seeing

[twitter-dev] Re: HTTP Server Error 503 No available server to handle this request

2009-10-12 Thread ryan alford
, 4:36 pm, ryan alford ryanalford...@gmail.com wrote: Thanks Dewalt. I was beginning to think something was wrong with my app. Atleast I know I am not the only one seeing these slow downs. Ryan On Mon, Oct 12, 2009 at 3:26 PM, Dewald Pretorius dpr...@gmail.com wrote

[twitter-dev] Re: HTTP Server Error 503 No available server to handle this request

2009-10-13 Thread ryan alford
And I am still having issues. I still can't post status updates from my application, even though this worked fine on Sunday night. Ryan On Tue, Oct 13, 2009 at 2:24 PM, rivv drachemor...@gmail.com wrote: My application is no longer able to Authorize Twitter accounts, even though I was able

[twitter-dev] Re: Duplicate Tweets

2009-10-13 Thread ryan alford
You clearly do not understand the basics of HTTP. Do you think that Twitter is going to somehow deny Firefox, IE, and other desktop clients from connecting to Twitter with a simple username and password only? Since when do Firefox and IE use the API to communicate with Twitter? Last time I

[twitter-dev] Re: Duplicate Tweets

2009-10-13 Thread ryan alford
My point is that Basic Auth will be going away with the API. If an application is not using the API, then it's developers don't have to worry about Basic Auth going away because it won't concern them. OAuth is for API authorization, not website authorization. Ryan On Tue, Oct 13, 2009 at 4:11

[twitter-dev] Re: OAuth wed desktop feedback

2009-10-14 Thread ryan alford
Tokens should never expire. However, you can only make that request once. If you try to make it again with the same request request token, then you will get the expired token error. On Wed, Oct 14, 2009 at 12:02 AM, BlueSkies scarter28m-goo...@yahoo.comwrote: When my application requests an

[twitter-dev] Re: (411) Length Required error

2009-10-14 Thread ryan alford
Here is the code... http://pastebin.com/m7ea04ea2 http://pastebin.com/m7ea04ea2Last night, that code worked(with the content length being commented out). This morning, it gives me the length required error. Ryan On Wed, Oct 14, 2009 at 11:09 AM, Chad Etzel c...@twitter.com wrote: Can you

[twitter-dev] Re: (411) Length Required error

2009-10-14 Thread ryan alford
: On Wed, Oct 14, 2009 at 11:17 AM, ryan alford ryanalford...@gmail.com wrote: Here is the code... http://pastebin.com/m7ea04ea2 Last night, that code worked(with the content length being commented out). This morning, it gives me the length required error. Ryan I am not extremely familiar

[twitter-dev] Re: (411) Length Required error

2009-10-14 Thread ryan alford
Another question is, what has changed? This code has been working fine since September 24th(sending the ContentLength). Then on October 11th, I start having issues. Ryan On Wed, Oct 14, 2009 at 11:58 AM, ryan alford ryanalford...@gmail.comwrote: Other code uses this snippet also. Now

[twitter-dev] Re: Seeing retweeted_details for user_timeline payload

2009-10-14 Thread ryan alford
Maybe the new retweet functionality has been turned on? Ryan On Wed, Oct 14, 2009 at 10:45 PM, Martin martin.duf...@gmail.com wrote: I'm retrieving the timeline for a specific user: curl http://www.twitter.com/statuses/user_timeline/ev.xml Within that timeline, I see retweeted_status

[twitter-dev] Re: Seeing retweeted_details for user_timeline payload

2009-10-14 Thread ryan alford
for testing. I don't think its gone public yet. On Wed, Oct 14, 2009 at 9:56 PM, ryan alford ryanalford...@gmail.com wrote: Maybe the new retweet functionality has been turned on? Ryan On Wed, Oct 14, 2009 at 10:45 PM, Martin martin.duf...@gmail.com wrote: I'm retrieving the timeline

[twitter-dev] Re: Seeing retweeted_details for user_timeline payload

2009-10-15 Thread ryan alford
that defines the semantics of the retweeted_status fragment ? Martin www.wherecloud.com On Oct 14, 10:59 pm, Josh Roesslein jroessl...@gmail.com wrote: I think its been enabled for a select few for testing. I don't think its gone public yet. On Wed, Oct 14, 2009 at 9:56 PM, ryan alford

[twitter-dev] Re: Anyone else getting HTTP 404 with APIs today?

2009-10-15 Thread ryan alford
I am not having any issues. *knock on wood* Ryan On Thu, Oct 15, 2009 at 11:26 AM, Atul Kulkarni atulskulka...@gmail.comwrote: Hi All, Is it just me or anyone else there is getting those as well? -- Regards, Atul Kulkarni www.d.umn.edu/~kulka053

[twitter-dev] Re: What to do with the access token after you've received it

2009-10-21 Thread ryan alford
The access token doesn't expire. It's also specific for the user. There is no reason for you to get rid of it. You should store it with a relation to the username. The user should not be forced to re-allow every session. On Oct 21, 2009, at 7:44 PM, shawninreach shawninre...@gmail.com wrote:

[twitter-dev] Re: What to do with the access token after you've received it

2009-10-22 Thread ryan alford
something with access token) ?? - back to site Something like if user and pass are valid then get the access token from the db and start doing w/e you wanted to do? Is this the flow that im missing? On Oct 21, 8:08 pm, ryan alford ryanalford...@gmail.com wrote: The access token

[twitter-dev] Re: What to do with the access token after you've received it

2009-10-22 Thread ryan alford
application knowing the difference since they aren't forced to login and the access token doesn't expire? This seems a little insecure. Is anyone taking the time to identify their apps users by a custom expiring token? Maybe I don't understand Oauth enough. On Oct 22, 8:41 am, ryan alford ryanalford

[twitter-dev] Re: Differenciating when a user authenticates user and pass with twitter and when a user allows your app to access their stuff

2009-10-23 Thread ryan alford
If you already have an access token for that user, then you don't need to send them to the authorization page. You cannot get the username and password they just put into the authorization page. If you want the username that they entered into the authorization page, when you request the access

[twitter-dev] Re: Welcome the the Twitter Development Talk

2009-10-23 Thread ryan alford
http://apiwiki.twitter.com/Twitter-REST-API-Method:-followers idshttp://apiwiki.twitter.com/Twitter-REST-API-Method:-followers%C2%A0ids On Fri, Oct 23, 2009 at 2:41 AM, Gaurav Shaha gauravshah...@gmail.comwrote: Hey can you help? I want the list of following of a specific user using php.

[twitter-dev] Re: OAuth without user interaction

2009-10-23 Thread ryan alford
It is possible to do OAuth without user interaction if you have their username and password, but this is frowned upon by Twitter and could get your IP blacklisted. OAuth is the only way to get the source to be your app. Ryan On Fri, Oct 23, 2009 at 2:22 PM, Marcos just...@gmail.com wrote: In

[twitter-dev] Re: Welcome the the Twitter Development Talk

2009-10-23 Thread ryan alford
list not Follower list. On Fri, Oct 23, 2009 at 9:33 PM, ryan alford ryanalford...@gmail.comwrote: http://apiwiki.twitter.com/Twitter-REST-API-Method:-followers idshttp://apiwiki.twitter.com/Twitter-REST-API-Method:-followers%C2%A0ids On Fri, Oct 23, 2009 at 2:41 AM, Gaurav Shaha gauravshah

[twitter-dev] Re: Welcome the the Twitter Development Talk

2009-10-23 Thread ryan alford
. On Fri, Oct 23, 2009 at 4:34 PM, ryan alford ryanalford...@gmail.comwrote: Let's not do any looking for ourselves. http://apiwiki.twitter.com/Twitter-REST-API-Method:-friends idshttp://apiwiki.twitter.com/Twitter-REST-API-Method:-friends%C2%A0ids http://apiwiki.twitter.com/Twitter-REST-API

[twitter-dev] Re: Find username/screenname through email addresses

2009-10-27 Thread ryan alford
No, and don't expect it to ever be available. On Oct 27, 2009, at 6:51 AM, dhaval dhaval.parik...@gmail.com wrote: Hey all Is it possible to find the screen name of a twitter user from an email address? Say suppose an email address is a...@abc.com then what is the corresponding screen

[twitter-dev] Re: Is OAuth API down?

2009-10-27 Thread ryan alford
OAuth is working fine for me right now. On Tue, Oct 27, 2009 at 7:52 AM, Chen Jie chenyue...@gmail.com wrote: My app runs on Appengine, and always get 'ApplicationError: 5 ', anybody has this issue now?

[twitter-dev] Re: Twitter API

2009-10-27 Thread ryan alford
As far as I know, there is no API for this. If I am not mistaken, currently, Twitter doesn't give the country of the tweeter. So there is no real way of knowing what country the tweet is from. On Tue, Oct 27, 2009 at 3:52 AM, NightStalker vincent.van...@gmail.comwrote: Hey guys I need some

[twitter-dev] Re: Is OAuth API down?

2009-10-27 Thread ryan alford
of my website can't login. ( www.gloxa.eu ) There's something. How can we help ? On Oct 27, 2:16 pm, ryan alford ryanalford...@gmail.com wrote: OAuth is working fine for me right now. On Tue, Oct 27, 2009 at 7:52 AM, Chen Jie chenyue...@gmail.com wrote: My app runs on Appengine

[twitter-dev] Re: Invalid Signature when manipulating URL directly

2009-10-28 Thread ryan alford
The signature parameter should be the last parameter. It should not be sorted with the other parameters. Ryan On Oct 28, 2009, at 1:14 AM, whomba andrew.l...@gmail.com wrote: Hello all. I just recently started using the twitter API and oAuth for a site I am working on. After wrapping my

[twitter-dev] Re: Automated Tweets

2009-10-28 Thread ryan alford
Twitter recently implemented logic to stop the ability of duplicate tweets. I can't remember if it was ever released what the time period is. On Oct 28, 2009, at 7:24 AM, Greg gregory.av...@gmail.com wrote: Hello, I have an application that sends out a Tweet when a user Authorizes the

[twitter-dev] Re: user+password

2009-10-28 Thread ryan alford
You are not required. I just used this API method without credentials. http://twitter.com/statuses/user_timeline/[InsertScreenNameHere].xml No credentials needed. Some API methods do required you to be authenticated, but some do not. You can view the methods at

[twitter-dev] Re: Handoff of Token's Between Apps

2009-10-30 Thread ryan alford
The user should authorize both applications. Yes, you can store the token and secret. That's what most apps do. On Oct 30, 2009, at 3:15 AM, YCBM youcannotb...@gmail.com wrote: Hi All, New to Twitter oAuth. We're building an app which will use the oAuth system vs. basic auth. As we're

[twitter-dev] Re: OAuth from the Browser

2009-11-07 Thread ryan alford
There are no app-specific servers. With OAuth, instead of passing user credentials, you use YOUR consumer key and consumer secret which identifies your application. You get an access token after the user has allowed your application to have access to their account. You will then use that access

[twitter-dev] Re: Getting started with a twitter application

2009-11-12 Thread ryan alford
You can use one of the many libraries for most of the more popular languages(and some for the less popular), or you can create your own library to communicate to the API. Ryan On Thu, Nov 12, 2009 at 3:09 AM, albana tejashree1@gmail.com wrote: Hi everybody! I am about to develop a

[twitter-dev] Re: .NET Class for handling Twitter Updates and Rate Checks

2009-11-12 Thread ryan alford
You are suppose to post it on a code repository site (like CodePlex or Google Code), then post a link to it here. Nobody wants 300 lines of code in their emails. Ryan On Thu, Nov 12, 2009 at 2:03 PM, ch...@stuffworldwide.com ch...@stuffworldwide.com wrote: I sent it to the twitter people to

[twitter-dev] Re: Read / Write Access By Default, But Can't POST

2009-11-14 Thread ryan alford
Delete your registration and add it again. On Nov 14, 2009 3:52 PM, Twlisted twlistedm...@gmail.com wrote: If I go to my application details page, it's marked as read/write access by default. But when I attempt to POST such as http://api.twitter.com/1/.$list_user./.$user_list./members.json;

Re: [twitter-dev] Get screen name with OAuth

2009-11-20 Thread ryan alford
In the query string of the returned response, there is a field called screen_name. That will contain the screen name of the user that authorized the application. So when you get oauth_token and oauth_token_secret from the response, get screen_name also. Ryan On Fri, Nov 20, 2009 at 10:51 AM,

Re: [twitter-dev] Authentication (user/pass )after Oauth authentication.....:S

2009-11-23 Thread ryan alford
After you get the pin, what URL do you go to? On Nov 23, 2009 7:50 AM, dmsiva danielmartinssi...@gmail.com wrote: hello. I make well oauth authentication. I put the pin, and I get the access_token, etc.. but when I request a 'get' the browser asks me another authentication (username, password).

Re: [twitter-dev] oauth Process flow and status Part 1

2009-11-24 Thread ryan alford
The signature has to go last. That's one mistake that most people make. You are suppose to put the parameters in order EXCEPT the signature parameter. The signature parameter is created by using the other parameters, then it's appended to the end of the query string. The OAuth signature is

Re: [twitter-dev] What Is The Status of Twitter OAuth?

2009-11-30 Thread ryan alford
He's not referring to OAuth the specification. He is referring to Twitter's implementation of it. Ryan On Mon, Nov 30, 2009 at 1:54 PM, Chris Babcock cbabc...@kolonelpanic.orgwrote: On Mon, 30 Nov 2009 10:27:24 -0800 (PST) Dewald Pretorius dpr...@gmail.com wrote: Last information I've

Re: [twitter-dev] Re: What Is The Status of Twitter OAuth?

2009-12-01 Thread ryan alford
I never knew that asking questions would be considered whining. Twitter has never officially stated that OAuth is in production like they announce other features (like Lists). Now they seem to be telling developers to start moving to OAuth. You state to don't use it. It doesn't look like we

Re: [twitter-dev] Re: A New API For Browserless Apps?

2009-12-10 Thread ryan alford
I was thinking the same. On Thu, Dec 10, 2009 at 9:33 AM, John Meyer john.l.me...@gmail.com wrote: On 12/10/2009 6:22 AM, Raffi Krikorian wrote: we're not making any fundamental changes to oauth - your apps should continue to work fine. the changes that we are making involve implementing

Re: [twitter-dev] Re: Request without oauth

2009-12-10 Thread ryan alford
Twitter is going to be making changes to OAuth to where the user can give you their credentials, and you can use those to get an Access Token. This is an option to bypass the PIN workflow. On Thu, Dec 10, 2009 at 10:03 AM, Fauzil Hamdi asfau...@gmail.com wrote: some body please 2009/12/10

Re: [twitter-dev] Re: Skipping the PIN based workflow for Desktop clients using OAuth

2010-01-03 Thread ryan alford
In the Desktop workflow, you don't have to enter the PIN every time. The user is NOT required to authorize your application every time they want to use it.After the first authorization, YOU store the access token and access token secret either in a database, file, or some other type of

Re: [twitter-dev] Removing Registered Application

2010-01-03 Thread ryan alford
You can revoke access from the Connections tab in the Settings on the web site. Ryan Sent from my DROID On Jan 3, 2010 7:56 PM, Greg gregory.av...@gmail.com wrote: Is it possible to remove a application that you registered? Like delete it from your list?

Re: [twitter-dev] Please Help

2010-01-05 Thread ryan alford
Post your query string. Don't necessarily need to see the code yet, just need to see the URL that you are requesting. The error means that your signature is incorrect. Ryan On Tue, Jan 5, 2010 at 2:06 PM, Vikram vikram.prav...@gmail.com wrote: When I try to get the QAuth Request token I get

Re: [twitter-dev] Re: Please Help

2010-01-06 Thread ryan alford
You are don't have the parameters in the proper order. The signature goes last. The rest of the parameters must be in order. Put the parameters in order, create the signature, then append the signature to the end or the query string. Ryan Sent from my DROID On Jan 6, 2010 2:05 AM, Vikram

Re: [twitter-dev] question about PIN code

2010-01-12 Thread ryan alford
When you direct the user to oauth/authorize, the user will be presented with an Allow/Deny page from Twitter. If they Allow, they then will be given an PIN on the screen. The user will need to give this PIN to you. Ryan On Tue, Jan 12, 2010 at 7:59 PM, dduby nezzi...@gmail.com wrote: hi,,,

Re: [twitter-dev] Re: Reinstate 'from app' for Basic Auth desktop apps until OAuth is fixed

2010-01-13 Thread ryan alford
I've been using OAuth for more than 3 months now, about 8 hours a day during the week while at work, using my own library and my own twitter client. I've never had an issue with stability. Now the desktop implementation is crappy(been posted about 50 billion times), but other than that, I've

Re: [twitter-dev] Re: Reinstate 'from app' for Basic Auth desktop apps until OAuth is fixed

2010-01-13 Thread ryan alford
that couldn't be used in production apps. Ryan Sent from my DROID On Jan 13, 2010 5:46 PM, Tim Haines tmhai...@gmail.com wrote: On Thu, Jan 14, 2010 at 10:52 AM, ryan alford ryanalford...@gmail.com wrote: I've been using O... I've found it just as stable as the rest of the API. It's not perfect

Re: [twitter-dev] Failed to validate oauth signature and token

2010-01-16 Thread ryan alford
The signature needs to be the very last parameter. You put all of the parameters in order except for the signature. Then you create the signature and append it to the end of the query string. Ryan Sent from my DROID On Jan 16, 2010 9:48 PM, eco_bach bac...@gmail.com wrote: Ok Yes this IS a

Re: [twitter-dev] List of Common Error messages and possible causes, ie 'Failed to validate oauth signature and token'.

2010-01-16 Thread ryan alford
Going by your other email, your query string parameters are not in the correct order. This is a very important part of OAuth. Ryan Sent from my DROID On Jan 16, 2010 9:48 PM, eco_bach bac...@gmail.com wrote: Hi I've read the FAQ, and all the documentation. Am attempting to get an AS3 client

Re: [twitter-dev] Re: Failed to validate oauth signature and token

2010-01-17 Thread ryan alford
Yeah, the Nonce needs to be a unique value. If your language can create GUIDs, that might be the best option. Ryan On Sat, Jan 16, 2010 at 11:11 PM, eco_bach bac...@gmail.com wrote: solved, apparently my oauth_nonce value was incorrect, I assumed it was simply a random string and I didn't

Re: [twitter-dev] authenticity_token same as access token?

2010-01-17 Thread ryan alford
Trying to screen_scrape? I don't believe they are the same. Ryan Sent from my DROID On Jan 17, 2010 5:20 PM, eco_bach bac...@gmail.com wrote: Hi Can someone confirm or deny whether the authenticity_token returned is the same as 'access_token' referred to in the documentation? Thanks in

Re: [twitter-dev] Sign in with Twitter, PIN authentication and Desktop Clients

2010-01-17 Thread ryan alford
1. Desktop applications are those that are installed or ran from a PC /Mac/Linux or on a mobile device. They are outside of the browser. 2. One is used for web applications, the other is for desktop applications. 3. You are correct. PIN workflow is only for desktop applications. Ryan Sent

Re: [twitter-dev] Re: OAuth best practice

2010-01-18 Thread ryan alford
You are correct. The PIN handshaking is only for Desktop Apps. Ryan On Mon, Jan 18, 2010 at 9:12 AM, eco_bach bac...@gmail.com wrote: Jeff, I might be wrong, as there seems to be some confusion on this, but I believe the extra PIN handshaking is ONLY required for what Twitter defines as

Re: [twitter-dev] Re: Basic Auth Deprecation in June

2010-01-18 Thread ryan alford
yes, it's official. The depreciation of Basic Auth will start in June. Ryan On Mon, Jan 18, 2010 at 10:57 AM, Hwee-Boon Yar hweeb...@gmail.com wrote: Thanks. Hope it's not official. I don't remember reading anything like that on the 2 lists. -- Hwee-Boon On Jan 18, 7:01 pm, Rich

Re: [twitter-dev] Re: OAuth best practice

2010-01-18 Thread ryan alford
, Jan 18, 2010 at 6:20 AM, ryan alford ryanalford...@gmail.comwrote: You are correct. The PIN handshaking is only for Desktop Apps. Ryan On Mon, Jan 18, 2010 at 9:12 AM, eco_bach bac...@gmail.com wrote: Jeff, I might be wrong, as there seems to be some confusion on this, but I believe

Re: [twitter-dev] Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
You are reading it correct. You do not want to give out your Consumer Key or Consumer Secret. If somebody downloads the source of your application, they are most likely going to be using it in their own application. Therefore, they need their own Consumer Key and Consumer Secret. Ryan On Mon,

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
There is a difference between giving your application to others to install and use, and others downloading your code for their own applications. If a user is installing your application to use, then your code would include your consumer key. If a user is downloading your open source code to use

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
. So when that app starts causing problems for users, it YOU that they start contacting. Ryan On Mon, Jan 18, 2010 at 2:32 PM, John Meyer john.l.me...@gmail.com wrote: On 1/18/2010 12:22 PM, ryan alford wrote: There is a difference between giving your application to others to install and use

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
Just the consumer key, or both the consumer key and consumer secret? both are needed when doing OAuth. Ryan On Mon, Jan 18, 2010 at 2:52 PM, M. Edward (Ed) Borasky zzn...@gmail.comwrote: On Jan 18, 11:32 am, John Meyer john.l.me...@gmail.com wrote: On 1/18/2010 12:22 PM, ryan alford wrote

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
Why would you be required to have a server? To keep your consumer key and consumer secret out of your app? It's not required. Mine are stored in a database that is coupled with my application. The database is password protected, so nobody is getting in. Ryan On Mon, Jan 18, 2010 at 4:27 PM,

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
Also, the consumer secret is harder to get since its not sent as a parameter. Ryan Sent from my DROID On Jan 18, 2010 7:18 PM, Abraham Williams 4bra...@gmail.com wrote: It would be less work for me to run charles proxy and see catch the consumer key/secret in transit then to decompile it and

Re: [twitter-dev] Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
to get their own API key? Sounds a bit counter intuitive to me. ryan alford wrote: You do not want to give out your Consumer Key or Consumer Secret. If someb... ryan alford wrote:There is a difference between giving your application to others to install ... The problem

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
What you say is true about all desktop applications that connect to an internet resource using some form of authentication. I don't see why somebody would expect a Twitter client to be any different. Ryan Sent from my DROID On Jan 18, 2010 10:16 PM, M. Edward (Ed) Borasky zzn...@gmail.com

Re: [twitter-dev] Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
The consumer secret is not public. The consumer key can be seen in the query parameters, but the consumer secret is not a query parameter. It would have to be reverse engineered using the signature. If twitter determines that a specific application is malware, I would only hope that they would

Re: [twitter-dev] Re: Using OAuth keys in an open source application

2010-01-18 Thread ryan alford
Who said that was even an option? I haven't seen one person who said that requiring every user to create their own consumer keys to use with an application was an option. The only reason that is even in this discussion is because somebody misinterpreted an answer and that's what they thought was

Re: [twitter-dev] temporarily overloaded 503 Service Unavailable

2010-01-20 Thread ryan alford
I don't think they user cares why Twitter is overloaded, so simply telling them that its overloaded should be enough. Ryan Sent from my DROID On Jan 20, 2010 7:13 AM, eco_bach bac...@gmail.com wrote: Noticing quite a few ' temporarily overloaded 503 Service Unavailable messages when trying to

Re: [twitter-dev] Beginner question : How to get the user ID after authorize OAuth step?

2010-01-20 Thread ryan alford
The screen_name is returned in the querystring along with the oauth_token and the oauth_token_secret values. Ryan On Wed, Jan 20, 2010 at 6:26 AM, Pitt pierre.mar...@gmail.com wrote: Hi, I'm trying to implement a browser app and Im just blocking at the first step... After the user granted

Re: [twitter-dev] Obtaining access token WITHOUT using a PIN

2010-01-20 Thread ryan alford
You DO NOT need the PIN for a browser app. It is ONLY REQUIRED for desktop apps. 1. oauth_consumer_key = Consumer key given to you by Twitter 2. oauth_token = The token 3. oauth_signature_method = HMAC-SHA1 4. oauth_signature = computed HMAC-SHA1 hash value of the other parameters 5.

Re: [twitter-dev] please help - sporadic '403 Forbidden:' error message when using OAuth Sign-In process

2010-01-20 Thread ryan alford
Isn't this the same problem that you posted about yesterday? http://groups.google.com/group/twitter-development-talk/browse_thread/thread/90cb64e3706e1337# http://groups.google.com/group/twitter-development-talk/browse_thread/thread/90cb64e3706e1337#Why create a new post? Ryan On Wed, Jan 20,

Re: [twitter-dev] Need Help on posting Message

2010-01-20 Thread ryan alford
You need to add this messageRequest.ServicePoint.Expect100Continue = false; so your code should look like this... http://codepaste.net/ababkc Ryan On Wed, Jan 20, 2010 at 10:22 AM, Atul atul101...@gmail.com wrote: Hello Frenz, I'm building an application in C#.Net 3.5. My Requirement

Re: [twitter-dev] Re: Not getting correct access token when using OAuth for sign in

2010-01-21 Thread ryan alford
The plus sign (+) in your signature should be encoded. You should URL encode the signature just as you do the other parameters. Ryan On Thu, Jan 21, 2010 at 2:25 PM, eco_bach bac...@gmail.com wrote: Hmm still not working, signature at the end. I believe I get an Httpstatus of '0'

Re: [twitter-dev] Better understanding of 'signature'

2010-01-22 Thread ryan alford
That is one of your problems. The signature needs to be created for each request. Here is how I do it in C#. I know it's not the language you are using, but hopefully it will help on how to create the signature. Then you can use similar libraries in Flash(if there are similar libraries) to make

Re: [twitter-dev] Verify credentials and verified =false

2010-01-22 Thread ryan alford
I don't think the verified means what you are assuming it means. If you make a call to verifiy_credentials, you will get a 401 error and an error message if the credentials are invalid. If you receive any user data, then it is a success. Straight from the API documentation

Re: [twitter-dev] Confused about OAuth 1.0 vs 1.0a and Twitter API docs

2010-01-22 Thread ryan alford
If you look at the very top of the 1.0 spec, you will see a yellow box... This specification was obsoleted by OAuth Core 1.0 Revision Ahttp://oauth.net/core/1.0a on June 24th, 2009 to address a session fixation attackhttp://oauth.net/advisories/2009-1/. The OAuth Core 1.0 Revision A specification

Re: [twitter-dev] Confused about OAuth 1.0 vs 1.0a and Twitter API docs

2010-01-22 Thread ryan alford
, at 1:18 PM, ryan alford wrote: If you look at the very top of the 1.0 spec, you will see a yellow box... This specification was obsoleted by OAuth Core 1.0 Revision A on June 24th, 2009 to address a session fixation attack. The OAuth Core 1.0 Revision A specification is being obsoleted

Re: [twitter-dev] Re: sqllite command for writing to local DB

2010-01-24 Thread ryan alford
Searching Google for writing data to sqlite java would help you out. Sent from my DROID On Jan 24, 2010 7:41 PM, Kidd jva...@gmail.com wrote: Bump!!? On Jan 17, 3:38 pm, Kidd jva...@gmail.com wrote: Hello all, I'm trying to capture data from...

Re: [twitter-dev] Re: sqllite command for writing to local DB

2010-01-24 Thread ryan alford
Not java though. Thought this was the Android email list Sent from my DROID On Jan 24, 2010 7:41 PM, Kidd jva...@gmail.com wrote: Bump!!? On Jan 17, 3:38 pm, Kidd jva...@gmail.com wrote: Hello all, I'm trying to capture data from...

Re: [twitter-dev] Rate limits

2010-01-24 Thread ryan alford
If I am not mistaken, the reset time in seconds is the number of seconds from 1/1/1970. Ryan Sent from my DROID On Jan 24, 2010 8:42 PM, EastSideDev eastside...@gmail.com wrote: When I get the rate_limit_status.xml, this is what I get: Array ( [hash] = Array (

Re: [twitter-dev] Re: getting more information than 'Could not authenticate...'

2010-01-25 Thread ryan alford
Are you putting the status parameter in the query string? If not, you should be, or atleast, that's what I had to do to get it to work. Ryan On Mon, Jan 25, 2010 at 8:22 AM, eco_bach bac...@gmail.com wrote: Hi Michael Good point. Actionscript 3. Chices are Twitterscript and Tweetr. As far

Re: [twitter-dev] Not able to read unicode from Twitter Response XML in C#.net

2010-01-25 Thread ryan alford
Can you paste an example of the bad characters as .Net shows them, and what they should really be? Ryan On Mon, Jan 25, 2010 at 5:36 AM, Rejeev rejeevtho...@gmail.com wrote: Hi all, My Twitter response XML contains some unicode characters , I am not able to read that in C#.net. Its showing

Re: [twitter-dev] Re: Can new twitter account be created from API?

2010-01-25 Thread ryan alford
If Twitter allowed the API to create new accounts, what's to say that somebody won't create a script to create millions of new accounts? Ryan On Mon, Jan 25, 2010 at 11:22 AM, Cameron Kaiser spec...@floodgap.comwrote: Or is the reason this is not implemented anywhere is because this sort of

Re: [twitter-dev] 'Incorrect signature' on status update with OAuth when verify credentials works

2010-01-25 Thread ryan alford
I am just wondering why you can't keep all of your questions in the same thread? If somebody was having the same issues as you, they would have to look through 10+ of your threads. To try to answer the question, are you including the status parameter as part of the query string, which in turn,

Re: [twitter-dev] Re: 'Incorrect signature' on status update with OAuth when verify credentials works

2010-01-26 Thread ryan alford
You need to have the parameter name and value. Ryan Sent from my DROID On Jan 25, 2010 11:47 PM, eco_bach bac...@gmail.com wrote: Thanks Ryan I'll have to look into signature creation more closely. Essentially, if I understand correctly, I am most likely missing the status parameter BEFORE

Re: [twitter-dev] Re: 'Incorrect signature' on status update with OAuth when verify credentials works

2010-01-26 Thread ryan alford
I still don't see your status in the query string of the URL. I see it in string for the signature, but in your actual URL, it's not there. This is my entire URL when posting a status update:

Re: [twitter-dev] Re: 'Incorrect signature' on status update with OAuth when verify credentials works

2010-01-26 Thread ryan alford
Don't do the POST request data. You do that for Basic Auth, but not for OAuth. Ryan On Tue, Jan 26, 2010 at 1:44 PM, eco_bach bac...@gmail.com wrote: Ryan Since its a POST its part of my request.data. Didn't think I also needed as part of my query string but will try. Do you know if

  1   2   >