Hi Taylor,
I don’t want a ‘more fine grained’ relationship with a user. I want a very basic relationship that doesn’t fall over as soon as they revoke access.
This issue needs one change to be resolved.
Option 1, The order auth checks are done. Currently twitter does:
- Check if this app has rights to send on behalf of this user. Fail.
- Update this user to be connected to this app anyway because they just tried to tweet from it.
Instead it needs to:
- Update the user to be connected to this app because they are trying to tweet from it.
- Check if this app has rights to send on behalf of this user. Success.
It is the order that is broken, not the lightweight way in which I am using it.
Option 2 (and actually my preferred option), is for Twitter to log the user out of a related site when they revoke access to an app. This would also resolve the issue because a site can check for that using @anywhere while they can’t (for some reason) check for access to the tweetbox.
Implementing a heavy back end check for a ‘simple’ @anywhere tweet box implementation kind of defeats the point of @anywhere
Thanks
