hueniverse covers a wide range of topics, usually with enough detail to help developers dive right in and start using the technologies described. But there are often times when the target is moving too fast or there are too many targets to cover. When that happens, there isn’t always a place to post a comment and ask a question.
If you have a question about any of the technologies or projects covered, and you can’t find a place to ask it, please consider this an open invitation to engage. In order to make this useful to others, please ask one question at a time and only use this space for questions (not comments or answers to other people).
Hi. We have built a twitter app. We’ve figured out how to use OAUth to authenticate a user and allow the app to access his or her account. The app is a simple update status application. The app updates the status of the twitter user from our website. But we can’t figure out how to update the status of ALL the users who have added the app at once? We need to be able to do this from the website form located at http://gnosisarts.com/home/confirm.php (This is just a test page to figure out how to get the damned thing working; it’s not the final home of the app)
Thanks,
Eric Bryant, Director
Gnosis Arts
You should ask this question on the Twitter API support group. I don’t know if Twitter offers special APIs for client management. Fire Eagle, a location service, offers such APIs.
http://www.oasis-open.org/committees/download.php/35678/xrd-1.0-wd11.html#xrd.sequence
The XRDS element schema says minOccurs=”0″ and maxOccurs=”unbounded”. As per the NOTE in the spec, there has to be minimum 2 elements. I think corresponding xml schema should be updated to have minOccurs=”2″ instead of “0″. Thus, applications can depend on XML Schema validator to ensure this is true instead of writing custom logic for correctness of XRD documents.
I think xml schema should show as below. I hope the correction will be done before the final XRD spec.
====
The specification does not mandate a cardinality of 2, only recommends it. That note is there to help people understand what the XRDS element is for, unlike previous versions. Since this is only a recommendation, the schema must allow 0 to many.
Hi,
I am new to Social Networking and oAuth. I like to create a sample application which work on all Social Network Sites ? Where should i start ? I want to do mainly three things
1. Get/Set status updates
2. Send messages
3. Make friends
I searched many. I found each Social Network uses different oAuth methods. Why its like that ? Since oAuth is a global standard.
I am expecting that if i implemented for one Social Network rest all must work with only difference in the request URLs and Consumer details. The rest mechanism must same. Where am i wrong ?
Please some one guide me. Is there any sample code that works for all the Social Networks. I have developed for Social Network twitter and linkedIn. This work with almost same code. But still have some difference.
Regards
Akeeq
Can you give examples of the social networks you are trying to use? How are they different? For the most part, most OAuth implementation are very similar. The libraries posted on the OAuth site are a good place to start. Also, OAuth does not say how the API itself works so sending updated and making friends will most likely be different on each site. OAuth has nothing to do with that part, only the security part.
Thanks for a good intro to OAuth (and other open tech’s)!
You are welcome! Please let me know if there are other topics you would like to see covered.
Where to download oAuth library for java…In the google code there were so many files.Any specific jars to use oAuth for my application
http://oauth.net/code/ has a good list of libraries.
I understood Oauth but i want guide to using it to access Twitter using javascript
I would suggest visiting:
http://groups.google.com/group/twitter-development-talk/
Hi, I am implementing 2 legged oauth in Pharo Smalltalk porting from the OpenSocial Java library. Everything looks good when testing against MySpace.com. However I get invalid signature all the time when testing against Orkut.
How I debug a signature issue?
First, you might want to ask on the Orkut developers list (http://code.google.com/apis/orkut/docs/resources.html#groups). Second, you can try comparing your signature with that produced by the custom example in http://hueniverse.com/2008/10/beginners-guide-to-oauth-part-iv-signing-requests/.
Please help me how to configure OAuth 1.0 with php for uses of oauth provider class function
The best place to start is http://oauth.net/code/ where you can find a list of PHP libraries. Once you find the library you want, contact the authors for assistant.
I want the dll file for oauth1.0 latest version. which has supported to the oauth provider class functions. Have you any ideas for how to get windows .dl file for the samel
How can I make the OAuth flow process work if I’m working within an iFrame?
Can you provide more specifics? What exactly are you trying to do?
Do you have a Twitter Id so i can store it in the Apture system so you get credit on tweets?
Andrew
@hueniverse
What does OAuth in twitter stand for? Is it an acronym?
OAuth stands for Open Authorization but is not related to Twitter. Twitter uses it but OAuth is a community specification.
Hi,
Is it possible to have single OAuth code across all email accounts (hotmail, yahoo, gmail), Social Networking sites, IM for single user account?
Please let me know.
Thanks,
Shrinivas
It is not possible as each of these services uses their own OAuth infrastructure.
I see in your examples that while making the signature, the elements are in different order (i.o, oauth_nonce, consumer_key etc) as opposed to how they are in the “GET” or “POST” statement that follows…is that ok?
The order in which they are sent does not matter. But when constructing the signature base string, the order matters and must follow the sorting rules listed.
Hello,
My name is Jose. I am a post graduate student and was wondering If I could use some of the works on the guide http://hueniverse.com/oauth/guide/ and refer/use them in a paper I am writing.
Cheers
Jose
The site articles are licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 United States License. This means you can quote, reference, and copy posts and use them in your work. However, you need to give proper attribution and cannot use it in a commercial work. If you a more liberal license, just ask.
Hello hueniverse,
I have read your excellent Beginner’s Guide to OAuth and just wanted to know if there is any tutorial or something where I can see how twitter or other websites have implemented OAuth? I just wanted to create my own API for a Website.
Thanks a lot
I am not aware of a tutorial for creating a service but if you look up the documentation for the Twitter, FourSquare, and new Facebook APIs, you should be able to figure out how to apply one of these to your own needs.
While reading the OAuth docs I randomly swiped a word more out of fidgety-ness then anything but was pleasantly surprised. Your highlight/search functionality is near perfect. Are you utilizing a js package or is it home brewed? I’d love to see it in a plugin of some kind (firefox/chrome).
Stephen
I’m using Apture: http://www.apture.com
Hi
I don’t know that why require request token..
why needs this??
The request token (or temporary credentials in the RFC) are used to differentiate between the front channel exposed to the user and the back channel between the client and server. They are also used to support clients that cannot receive callbacks directly.
Is there a way to use OAuth token within a single web application? I have read your use cases. I have a forgot password link sent in an email. Now this is a special url that cannot be authenticated. Is there a neat way of associating a token with this url that expires after a few days. We don’t want the wrong user from getting this url and hacking into the site.
Ours is a non-REST web application. Hope my question makes sense.
Password reset is usually a barer token solution where whoever controls the email account and have access to the special link, can change the password. OAuth cannot help you here because you don’t have a way to authenticate the user other than giving them a URI.
How to deal with the 3legged scrap all thingy in Orkut? I am looking for a php version of code for it.
I am not familiar with how Orkut uses OAuth. I suggest you ask this question on their developer forum.