Cameron is right, you should be using HTTPS. xAuth requests (and all the
oauth endpoints for token negotiation) won't work with the API console as
it's for making resource requests with access tokens -- not requests to
retrieve access tokens..

Make sure that the following is true when using xAuth:
  * You are using POST
  * You are using SSL
  * Your xAuth parameters are the ONLY parameters in your POST body
  * You're setting a Content-Type header of
  * Your xAuth parameters are properly part of your signature base string,
where they will appear at the end of the signature base string in
alphabetical order
  * You're using HTTP header-based OAuth -- not attaching OAuth parameters
to the URL or POST body
  * You're HTTP Authorization header should only have oauth_* parameters in
it, not any of the xauth parameters

Given all these conditions, and enabled xAuth access, xAuth should work for

Taylor Singletary
Developer Advocate, Twitter

On Tue, May 11, 2010 at 5:44 AM, Cameron Kaiser <>wrote:

> > I recently got xAuth approval for my application. But it doesn't seem
> > to be working. I m getting a 404 Not Found error when I try to hit
> >
> Er, ignore that last. It should be
> --
> ------------------------------------ personal:
> --
>  Cameron Kaiser * Floodgap Systems * *
> -- The only abnormality is the inability to love. -- Anais Nin
> ----------------

Reply via email to