A few points: Having users enter username and password in your application mostly defeats the purpose of OAuth. Some say it does not matter since you should only install trusted apps on your computer but that is a discussion that has been hashed out many times before in other threads.
there is no point in asking for a username since that should just be populated after the OAuth dance is finished. You might want to look at the new PIN based OAuth flow under desktop clients: http://apiwiki.twitter.com/Authentication I'm not developing desktop OSX applications yet but I am all for more opensource code. Hope this helps. Abraham On Tue, Jun 23, 2009 at 19:05, Support<[email protected]> wrote: > Hi, > > This is my first post to this group, so... hiya! > > I've been struggling with this OAuth stuff for a little while. I've > been trying to find a user interface that rivals the simplicity and > ease of use of a username/password system with a traditional desktop > app. > > What I've come up with uses a temporary webview to request the > authentication and stores the access token in the Mac OS X Keychain. > It's not as clean as a username/password, but it's not too bad either. > > I've set up and example just to ask for comments. > > I'd appreciate any comments, but mostly about: > 1. The user experience -- how is it? > 2. Am I being a good OAuth citizen? > 3. What are the pitfalls of a technique like this? > 4. Are there other examples out there that offer a better/cleaner/ > easier/safer experience? > > > If there's interest I'd be happy to publish this as open source. > > > NB: This isn't really meant to be a real twitter client. You > probably shouldn't use it as one. ;-) > > > Requirements: > Mac OS X 10.5 Leopard (intel) > > Download: > http://www.yourhead.com/oauth/oauth.dmg > > Twitter: > @isaiah > > Email: > [email protected] > > > Thanks, > Isaiah -- Abraham Williams | Community Evangelist | http://web608.org Hacker | http://abrah.am | http://twitter.com/abraham Project | http://fireeagle.labs.poseurtech.com This email is: [ ] blogable [x] ask first [ ] private.
