Good call. Thanks. The secret should only be used for signing.
On Mar 17, 12:56 pm, Abraham Williams <[email protected]> wrote: > I'm not sure about the JS error but I just wanted to say that the > oauth_token_secret does not need to be in the url string and for security it > should be left off. > > On Tue, Mar 17, 2009 at 12:49, Shannon Whitley > <[email protected]>wrote: > > > > > I'm testing oAuth with IE7. The authorization page is displaying a > > javascript error. The same url opens fine in Firefox. > > > Url = > >http://twitter.com/oauth/authorize/?oauth_token={token}&oauth_token_secret={secret}<http://twitter.com/oauth/authorize/?oauth_token=%7Btoken%7D&oauth_tok...> > > > Error = Object Required > > > JS Line = if(window.top === window.self) {document.getElementById > > ('twitainer').style.display='block';} > > > Has anyone else had problems with IE7 on the authorization page? > > -- > Abraham Williams |http://the.hackerconundrum.com > Web608 | Community Evangelist |http://web608.org > This email is: [ ] blogable [x] ask first [ ] private. > Sent from: Madison WI United States.
