Hi episod,
Thank you for your quick reply. I’m working with iOS 4.3+ firmware. The application uses Twitter as Authentication provider, in order to authenticate the users (something like to: i need to know if who you tell to be is who you really are).
First, the user insert his credentials into a “login with twitter” screen. The oauth_token and oauth_token_secret are stored into the iOS application and used to forge and sign all requests.
After this first step, if the user want to insert an image in my database, he calls an api web endpoint (http://mywebsite/insertNewPhoto.php).
The aboce php script takes the photo from a POST parameter, but before inserting them into the DB, it checks the headers into the request and makes a call to Twitter, in order to authenticate the user.
To accomplish, this i’ve forged a new CURL request like the one above in my previous post.
I understand about the hard coding issue in your last assertion about X-Auth-Service-Provider. You are right! Sorry, I will fix it asap.
Is this a tipical scenario for OAuth Echo?
Thanks in advance for your help!
