Slide 38
Slide 38 text
OAuth
• An open protocol to allow secure authorisation to access protected resources
• Twitter uses OAuth 1.0a, while the majority uses OAuth 2.0
• Instead of session, OAuth uses access_token for request authorisation
• Example:
GET /1.1/statuses/user_timeline.json HTTP/1.1
Authorization: OAuth
oauth_consumer_key="DC0sePOBbQ8bYdC8r4Smg",oauth_signature_
method="HMACSHA1",oauth_timestamp="14683423091",oauth_nonce
="9537061051",oauth_version="1.0",oauth_token="3185435460-
FTrisxX5Wc7c4KZxEcUPApBIAkobAMHTYbVNU4k",oauth_signature="m
VOi8NqfO8HzvKLpVv44LlN9eis%3D"
Host: api.twitter.com
OAuth parameter
38