On May 8, 8:20 am, Kalpa Welivitigoda <[email protected]> wrote: > > I'm trying to develop a twitter client with python. Is it ok to let > the consumer key and consumer secret to be visible in the python > script. If not could anyone please suggest a way to hide it. >
This is not an easy issue to solve, nor is it in Twitter's control to solve. See this comment - http://ask.slashdot.org/comments.pl?sid=214172&cid=17409468 - on this thread - http://ask.slashdot.org/story/06/12/30/004257/Keeping-Passwords-Embedded-In-Code-Secure on slashdot. The one place where I've seen this work controlled the entire stack from the OS on up, and so could support sharing secrets in processes which needed them (say, for database access) while making it really, really hard for someone with access to the box and malignant intent to steal it. regards, Vijay -- Twitter developer documentation and resources: https://dev.twitter.com/doc API updates via Twitter: https://twitter.com/twitterapi Issues/Enhancements Tracker: https://code.google.com/p/twitter-api/issues/list Change your membership to this group: https://groups.google.com/forum/#!forum/twitter-development-talk
