I’m building a web app that extends the twitter interface in a few ways. The way I would like the workflow to work is for the user to log into my site via OmniAuth and then to show twitter in an iframe on my site. The idea is that I don’t want my users to need to learn a new interface. But, I’ve noticed that twitter.com is not showing up in the iframe and I’ve read that this is purposeful to prevent fishing. Is there any workaround for this? My app already has read and write access to the users account so I have the necessary credentials to prove that I’m not a fishing site. Any help would be appreciated.