They can force oauth authentication for authenticated API calls. If the API stops looking at the HTTP_AUTH_USER to determine who the user is, basic auth has been deprecated...



On Dec 9, 2009, at 6:24 AM, "Dean Collins" <d...@cognation.net> wrote:


How are they going to stop basic auth?

If a website already have the username/passwords doesn't that mean they
can log in on a users behalf until they change the password via the
twitter.com website?





Cheers,

Dean




-----Original Message-----
From: twitter-development-talk@googlegroups.com
[mailto:twitter-development-t...@googlegroups.com] On Behalf Of Patrick
Kennedy
Sent: Wednesday, December 09, 2009 9:12 AM
To: twitter-development-talk@googlegroups.com
Subject: [twitter-dev] Basic Auth deprecation coming

With Basic Auth deprecation coming in June 2010, will developers have
a "sand box" way to use Basic Auth?  I mean, it's handy to develop and
understand code with Basic Auth, and then cut it over to oAuth. Any
ideas?

Reply via email to