I’ve been playing with the Twitter API for a while, and obviously have been using OAuth too.
As I always work with desktop like applications, I first chose to use query string based params.
But now, I want to work with headers. So I re-wrote my personal lib (AS3) to deal with this kind of request.
In order to make everybody fully understand my question, let me give you some details:
In the oauth flow, there are 4 possible endpoints types :
- request token endpoint
- authorize endpoint
- access endpoint
- API methods endpoints.
All of these 4 endpoints work fine with headers based requests, but for the second one (Authorize), I’m always forced to re-enter my Twitter credentials,
If I try this endpoint with query string based params, if a previous session is still valid, I’m not forced to re-enter my Twitter credentials,
I thought the problem comes form my code, but my lib works fine for all the 4 possible endpoints types on other API using OAuth 1.0a, like Vimeo,Flickr,Tumblr. (just testes these 3 ones)
Is it something specific to your oauth implementation ?
I read this ; “https://dev.twitter.com/discussions/204” and check all requirements. Nothing .
I checked I don’t repeat oauth_params between params and headers too, still nothing better
Any clue ?