Re: [twitter-dev] Re: TCL & oAuth

2010-05-07 Thread Dossy Shiobara 
It's pure Tcl.

You'll want your bot to provide the user a URL they will visit in their
browser that will start the OAuth exchange.  Then, you'll need some way
for them to provide the PIN back to the bot when they're done
authorizing your app. in their browser.


On 5/7/10 10:41 AM, Dustin Shea wrote:
> Dossy,
> 
> Your oAuth client you wrote in TCL, is it a client using TCL/TK or is
> it pure TCL? I do ask because I'm still pretty much a novice TCL
> coder and am unsure how I could go about writing something sending
> and receiving these requests, and with looking at doing
> Out-of-band/PIN implementation about causing my app (which will be
> running off of an eggdrop bot) to possibly pop up a browser window or
> at least look at finding a way for the bot to pull this information
> another way and return it to the user. Will see how to work on this
> when I finally get started converting from basic auth to oAuth.


-- 
Dossy Shiobara  | do...@panoptic.com | http://dossy.org/
Panoptic Computer Network   | http://panoptic.com/
  "He realized the fastest way to change is to laugh at your own
folly -- then you can let go and quickly move on." (p. 70)

Re: [twitter-dev] Re: TCL & oAuth

2010-05-07 Thread Dustin Shea 
Dossy,

Your oAuth client you wrote in TCL, is it a client using TCL/TK or is it pure 
TCL? I do ask because I'm still pretty much a novice TCL coder and am unsure 
how I could go about writing something sending and receiving these requests, 
and with looking at doing Out-of-band/PIN implementation about causing my app 
(which will be running off of an eggdrop bot) to possibly pop up a browser 
window or at least look at finding a way for the bot to pull this information 
another way and return it to the user. Will see how to work on this when I 
finally get started converting from basic auth to oAuth.

-Dustin

On 5/6/2010 9:50 PM, Dustin wrote:
> I was lookin at maybe doing Out-of-band/PIN Code Authentication.
> However, I don't see much documentation on how to go about doing this.
> 
> On May 6, 4:48 pm, Dossy Shiobara  wrote:
>> I have written an OAuth client in Tcl for Twitter Karma, but it's in no
>> condition to open source at the moment.
>>
>> However, I can tell you that the sha1 package (for sha1::hmac) works,
>> and the base64 package (for base64::encode) too.
>>
>> OAuth really isn't that hard to implement, really.  And, from the sounds
>> of it, you don't even need a full OAuth consumer implementation, just a
>> working access token for your account - perhaps there's a simple utility
>> out there that you can feed your consumer key and secret into and have
>> it output your access token that you can then use.
>>
>> On 5/6/10 5:01 PM, Dustin wrote:
>>
>>> I currently have been working on an application under TCL to post my
>>> twitter timeline, direct messages, profile information and such
>>> (almost a full TCL app) for my IRC eggdrop bot. I've been using the
>>> Basic Authentication method and I've just read come 6/30 I won't be
>>> able to use this method any longer. Has anyone come across an oAuth
>>> library for TCL that I can look into using so I can continue to work
>>> on this project of mine and not have it die when the Basic Auth method
>>> dies here soon?
>>
>>> If you are interested in what I have ATM, my code can be found here:
>>> http://github.com/demonicpagan/Stormbot-TCL-Twitter-Module/blob/maste...
>>
>>> Any help for the conversion will be greatly appreciated.
>>
>> --
>> Dossy Shiobara  | do...@panoptic.com |http://dossy.org/
>> Panoptic Computer Network   |http://panoptic.com/
>>   "He realized the fastest way to change is to laugh at your own
>> folly -- then you can let go and quickly move on." (p. 70)

Re: [twitter-dev] Re: TCL & oAuth

2010-05-07 Thread Dustin Shea 
I am partly there in that case then. I already have my application set as a 
desktop client. It's just a matter of writing the rest of the code and learning 
to use an oAuth library once I find one for TCL.

On 5/7/2010 9:06 AM, Taylor Singletary wrote:
> I'll be updating the documentation on the PIN code, out-of-band mode
> support soon.
> 
> The high-level is that it's exactly like the full OAuth flow, with the
> exception that your sever never receives a callback indicating that the
> user has authorized your application. Instead, they are presented with a
> screen that gives them a short "PIN code" that they'll then enter into a
> UI that you present in your application. 
> 
> You then perform the access token arm of the OAuth trip, just as if you
> were doing it in the normal course of OAuth, except you use the
> oauth_verifier that the user gave you (the PIN code) instead of one sent
> to you by an oauth_callback.
> 
> To turn out of band mode on, you simply mark your application as a
> "desktop application" on dev.twitter.com , and
> to be fully proper you'll also specify an oauth_callback value of "oob"
> when sending your request token request. 
> 
> Taylor Singletary
> Developer Advocate, Twitter
> http://twitter.com/episod
> 
> 
> On Thu, May 6, 2010 at 7:50 PM, Dustin  > wrote:
> 
> I was lookin at maybe doing Out-of-band/PIN Code Authentication.
> However, I don't see much documentation on how to go about doing this.
> 
> On May 6, 4:48 pm, Dossy Shiobara  > wrote:
> > I have written an OAuth client in Tcl for Twitter Karma, but it's
> in no
> > condition to open source at the moment.
> >
> > However, I can tell you that the sha1 package (for sha1::hmac) works,
> > and the base64 package (for base64::encode) too.
> >
> > OAuth really isn't that hard to implement, really.  And, from the
> sounds
> > of it, you don't even need a full OAuth consumer implementation,
> just a
> > working access token for your account - perhaps there's a simple
> utility
> > out there that you can feed your consumer key and secret into and have
> > it output your access token that you can then use.
> >
> > On 5/6/10 5:01 PM, Dustin wrote:
> >
> > > I currently have been working on an application under TCL to post my
> > > twitter timeline, direct messages, profile information and such
> > > (almost a full TCL app) for my IRC eggdrop bot. I've been using the
> > > Basic Authentication method and I've just read come 6/30 I won't be
> > > able to use this method any longer. Has anyone come across an oAuth
> > > library for TCL that I can look into using so I can continue to work
> > > on this project of mine and not have it die when the Basic Auth
> method
> > > dies here soon?
> >
> > > If you are interested in what I have ATM, my code can be found here:
> >
> >http://github.com/demonicpagan/Stormbot-TCL-Twitter-Module/blob/maste...
> >
> > > Any help for the conversion will be greatly appreciated.
> >
> > --
> > Dossy Shiobara  | do...@panoptic.com
>  |http://dossy.org/
> > Panoptic Computer Network   |http://panoptic.com/
> >   "He realized the fastest way to change is to laugh at your own
> > folly -- then you can let go and quickly move on." (p. 70)
> 
>

Re: [twitter-dev] Re: TCL & oAuth

2010-05-07 Thread Taylor Singletary 
I'll be updating the documentation on the PIN code, out-of-band mode support
soon.

The high-level is that it's exactly like the full OAuth flow, with the
exception that your sever never receives a callback indicating that the user
has authorized your application. Instead, they are presented with a screen
that gives them a short "PIN code" that they'll then enter into a UI that
you present in your application.

You then perform the access token arm of the OAuth trip, just as if you were
doing it in the normal course of OAuth, except you use the oauth_verifier
that the user gave you (the PIN code) instead of one sent to you by an
oauth_callback.

To turn out of band mode on, you simply mark your application as a "desktop
application" on dev.twitter.com, and to be fully proper you'll also specify
an oauth_callback value of "oob" when sending your request token request.

Taylor Singletary
Developer Advocate, Twitter
http://twitter.com/episod


On Thu, May 6, 2010 at 7:50 PM, Dustin  wrote:

> I was lookin at maybe doing Out-of-band/PIN Code Authentication.
> However, I don't see much documentation on how to go about doing this.
>
> On May 6, 4:48 pm, Dossy Shiobara  wrote:
> > I have written an OAuth client in Tcl for Twitter Karma, but it's in no
> > condition to open source at the moment.
> >
> > However, I can tell you that the sha1 package (for sha1::hmac) works,
> > and the base64 package (for base64::encode) too.
> >
> > OAuth really isn't that hard to implement, really.  And, from the sounds
> > of it, you don't even need a full OAuth consumer implementation, just a
> > working access token for your account - perhaps there's a simple utility
> > out there that you can feed your consumer key and secret into and have
> > it output your access token that you can then use.
> >
> > On 5/6/10 5:01 PM, Dustin wrote:
> >
> > > I currently have been working on an application under TCL to post my
> > > twitter timeline, direct messages, profile information and such
> > > (almost a full TCL app) for my IRC eggdrop bot. I've been using the
> > > Basic Authentication method and I've just read come 6/30 I won't be
> > > able to use this method any longer. Has anyone come across an oAuth
> > > library for TCL that I can look into using so I can continue to work
> > > on this project of mine and not have it die when the Basic Auth method
> > > dies here soon?
> >
> > > If you are interested in what I have ATM, my code can be found here:
> > >http://github.com/demonicpagan/Stormbot-TCL-Twitter-Module/blob/maste.
> ..
> >
> > > Any help for the conversion will be greatly appreciated.
> >
> > --
> > Dossy Shiobara  | do...@panoptic.com |http://dossy.org/
> > Panoptic Computer Network   |http://panoptic.com/
> >   "He realized the fastest way to change is to laugh at your own
> > folly -- then you can let go and quickly move on." (p. 70)
>

[twitter-dev] Re: TCL & oAuth

2010-05-06 Thread Dustin 
I don't think going about using my access token would be a viable
solution as I have no way of keeping those tokens secret.

On May 6, 4:58 pm, Taylor Singletary 
wrote:
> Can't help much with a TCL implementation, but once you've registered an
> application you can view the application record on dev.twitter.com and click
> on a button called "My Access Token" to get the access token and access
> token secret for your account from your application's perspective, which
> simplifies the "I just need my access token" use case considerbly.
>
> Taylor Singletary
> Developer Advocate, Twitterhttp://twitter.com/episod
>
>
>
> On Thu, May 6, 2010 at 2:48 PM, Dossy Shiobara  wrote:
> > I have written an OAuth client in Tcl for Twitter Karma, but it's in no
> > condition to open source at the moment.
>
> > However, I can tell you that the sha1 package (for sha1::hmac) works,
> > and the base64 package (for base64::encode) too.
>
> > OAuth really isn't that hard to implement, really.  And, from the sounds
> > of it, you don't even need a full OAuth consumer implementation, just a
> > working access token for your account - perhaps there's a simple utility
> > out there that you can feed your consumer key and secret into and have
> > it output your access token that you can then use.
>
> > On 5/6/10 5:01 PM, Dustin wrote:
> > > I currently have been working on an application under TCL to post my
> > > twitter timeline, direct messages, profile information and such
> > > (almost a full TCL app) for my IRC eggdrop bot. I've been using the
> > > Basic Authentication method and I've just read come 6/30 I won't be
> > > able to use this method any longer. Has anyone come across an oAuth
> > > library for TCL that I can look into using so I can continue to work
> > > on this project of mine and not have it die when the Basic Auth method
> > > dies here soon?
>
> > > If you are interested in what I have ATM, my code can be found here:
>
> >http://github.com/demonicpagan/Stormbot-TCL-Twitter-Module/blob/maste...
>
> > > Any help for the conversion will be greatly appreciated.
>
> > --
> > Dossy Shiobara              | do...@panoptic.com |http://dossy.org/
> > Panoptic Computer Network   |http://panoptic.com/
> >  "He realized the fastest way to change is to laugh at your own
> >    folly -- then you can let go and quickly move on." (p. 70)

[twitter-dev] Re: TCL & oAuth

2010-05-06 Thread Dustin 
I was lookin at maybe doing Out-of-band/PIN Code Authentication.
However, I don't see much documentation on how to go about doing this.

On May 6, 4:48 pm, Dossy Shiobara  wrote:
> I have written an OAuth client in Tcl for Twitter Karma, but it's in no
> condition to open source at the moment.
>
> However, I can tell you that the sha1 package (for sha1::hmac) works,
> and the base64 package (for base64::encode) too.
>
> OAuth really isn't that hard to implement, really.  And, from the sounds
> of it, you don't even need a full OAuth consumer implementation, just a
> working access token for your account - perhaps there's a simple utility
> out there that you can feed your consumer key and secret into and have
> it output your access token that you can then use.
>
> On 5/6/10 5:01 PM, Dustin wrote:
>
> > I currently have been working on an application under TCL to post my
> > twitter timeline, direct messages, profile information and such
> > (almost a full TCL app) for my IRC eggdrop bot. I've been using the
> > Basic Authentication method and I've just read come 6/30 I won't be
> > able to use this method any longer. Has anyone come across an oAuth
> > library for TCL that I can look into using so I can continue to work
> > on this project of mine and not have it die when the Basic Auth method
> > dies here soon?
>
> > If you are interested in what I have ATM, my code can be found here:
> >http://github.com/demonicpagan/Stormbot-TCL-Twitter-Module/blob/maste...
>
> > Any help for the conversion will be greatly appreciated.
>
> --
> Dossy Shiobara              | do...@panoptic.com |http://dossy.org/
> Panoptic Computer Network   |http://panoptic.com/
>   "He realized the fastest way to change is to laugh at your own
>     folly -- then you can let go and quickly move on." (p. 70)