An attacker can just as easily follow a 302 as can a legitimate API developer or user of Twitter. I don't understand why Twitter thinks this is a solution to the problem. Please stop 302ing.
Thanks, -- Kyle Mulka http://twilk.com
- [twitter-dev] 302s are NOT the solution Kyle Mulka
- [twitter-dev] Re: 302s are NOT the solution Fawkes
- [twitter-dev] Re: 302s are NOT the solution Howard Siegel
- [twitter-dev] Re: 302s are NOT the solution Josh Roesslein
- [twitter-dev] Re: 302s are NOT the solut... Chad Etzel
- [twitter-dev] Re: 302s are NOT the ... Josh Roesslein
- [twitter-dev] Re: 302s are NOT the solution Scott Haneda
- [twitter-dev] Re: 302s are NOT the solut... Jesse Stay
- [twitter-dev] Re: 302s are NOT the solut... Dewald Pretorius
- [twitter-dev] Re: 302s are NOT the solution Chris Babcock
- [twitter-dev] Re: 302s are NOT the solution John Kalucki
