8/4/2019 OAuth FAQ | Dev.twitter
1/2
7/3/11 6:15 PMOAuth FAQ | dev.twitter.com
Page 1 of 2http://dev.twitter.com/pages/oauth_faq
dev@twitter
API StatusDocumentationDiscussionsYour appsSign out
Search
Introducing the Follow Button
May 31, 2011 Get all the details around our new Follow Button
x
Read the detailed documentation about our Follow Button
here.
OAuth FAQ
Home Supplemental Documentation OAuth FAQ
General
What is OAuth?
OAuth is an authentication protocol that allows users to approve
application to act on their behalfwithout sharing their password.
More information can be found at oauth.net or in the
excellentBeginner's Guide to OAuth from Hueniverse.
Where do I create an application?
You can create new applications on the Twitter Developer Site at
http://dev.twitter.com/apps/new.
When are you going to turn off Basic Auth?
We announced in December of 2009 the deprecation of Basic Auth.
Its removal date from the platform
http://hueniverse.com/oauth/http://dev.twitter.com/logouthttp://dev.twitter.com/appshttp://dev.twitter.com/dochttp://dev.twitter.com/http://dev.twitter.com/apps/newhttp://hueniverse.com/oauth/http://oauth.net/http://dev.twitter.com/dochttp://dev.twitter.com/http://dev.twitter.com/pages/follow_buttonhttp://dev.twitter.com/pages/oauth_faq#http://twitter.com/about/resources/followbuttonhttp://twitter.com/about/resources/followbuttonhttp://twitter.com/about/resources/followbuttonhttp://dev.twitter.com/logouthttp://dev.twitter.com/appshttp://dev.twitter.com/discusshttp://dev.twitter.com/dochttp://dev.twitter.com/statushttp://dev.twitter.com/
8/4/2019 OAuth FAQ | Dev.twitter
2/2
7/3/11 6:15 PMOAuth FAQ | dev.twitter.com
Page 2 of 2http://dev.twitter.com/pages/oauth_faq
is set for June 2010. We announced towards the end of June 2010
that we have postponed this untilAugust 16th 2010.
Can my application continue to use Basic Auth?
You can continue to use Basic Auth until the turn off date, but
we strongly recommend moving to
OAuth now. We have increased rate limits for OAuth traffic to
api.twitter.com endpoints to 350 requestsper hour, more than double
the current Basic Auth rate limit.
How do I convert my Basic Auth application to OAuth?
Conversion is largely dependent on the programming language and
libraries that you use. SeeTransitioning from Basic Auth to OAuth
for help.
Technical
How long does an access token last?
We do not currently expire access tokens. Your access token will
be invalid if a user explicitly rejectsyour application from their
settings or if a Twitter admin suspends your application. If your
applicationis suspended there will be a note on your application
page saying that it has been suspended.
The application registration page asks about read/write access.
What constitutes a
write?
Many users trust an application to read their information but
not necessarily change their name or postnew statuses. Updating
information via the Twitter API - be it name, location or adding a
new status -requires and HTTP POST. We stuck with the same
restriction when implementing this. Any API methodthat requires an
HTTP POST is considered a write method and requires read &
write access.
2011 TwitterAbout UsContactBlogStatusAPI
StatusResourcesBusinessHelpJobsTermsPrivacy@TwitterAPI
http://twitter.com/twitterapihttp://twitter.com/privacyhttp://twitter.com/toshttp://twitter.com/jobshttp://support.twitter.com/http://business.twitter.com/twitter101http://twitter.com/about/resourceshttp://dev.twitter.com/statushttp://status.twitter.com/http://blog.twitter.com/http://twitter.com/about#contacthttp://twitter.com/about#abouthttp://dev.twitter.com/pages/basic_to_oauth
![[xDef2012]OAuth Security](https://img.pdfslide.us/doc/110x75/558c03d3d8b42a62788b45d4/xdef2012oauth-security.jpg)
