i apologise that i'm running behind on getting these out, but i've put out
the first in a series of blog posts regarding what twitter is doing with
oauth moving forward -- this one, specifically, is a RFC around "delegation
in OAuth identity verification". a total mouthful, i know, so it may help
to think about it in a concrete example:
You're an OAuth enabled Twitter client, and you've already authorized your
> user. You user wants to use a media providing service like TwitPic.
> TwitPic, currently, asks for the username and password of your user so it
> can store the photo on behalf of the Twitter user. You don't have that
> username and password, so how do you give the ability to TwitPic to verify
> the identity of your user?
that being said, please check out
Twitter Platform Team