Oauth callback error - Invalid access token


#1

Hello!
We are having a problem getting Access Tokens from our app users. It was perfectly working a few days back, but now it’s not.
We are doing the oauth dance using twitter4j. We retrieve a request token for the user and then use it to call http://api.twitter.com/oauth/authorize?oauth_token=[REQUEST_TOKEN]. But, when the user authorizes the app, there is a call to
[our_callback_url]?oauth_token=[REQUEST_TOKEN]&oauth_verifier=[VERIFIER] which doesn’t even reach our server and we get this error message (using chrome):
{ “error”: “invalid_token”, “error_description”: “Invalid access token: [REQUEST_TOKEN]”}
and in firefox:
Firefox cannot find the file in [our_callback_url]?oauth_token=[REQUEST_TOKEN]&oauth_verifier=[VERIFIER]

The thing is that, if I remove the oauth_token parameter from the callback url twitter is giving back, it works perfectly fine, as we are storing the access token in the user’s session, but I think there is no way to tell Twitter not to return that parameter. Obviously, we can’t ask our users to remove the parameter themselves. Any suggestions?
Like I said, this was working perfectly fine about a week ago…


#2

I’m experiencing this as well- did you manage to resolve the issue?


#3

Yes. We had implemented oauth to protect our own resources using Spring Security Oauth. As a result, every call with a “oauth_token” parameter in the request was being intercepted by the security filter and the token provided by Twitter was rejected. We had to edit the Oauth2ProtectedResourceFilter to avoid this… It was not a Twitter problem
Hope it helps!


#4

Hi alvaro,
I dono how to authenticate, i tried, but i cant get it, Can u send me your sample code for my reference.


#5

Hello i authenticated my website by c# by twitter and tweeted successfully also if u need any help please reply me i posted my code at http://aadyakrishna.blogspot.com/