One time authentication?


I have an application that can send the consumer key and secret, get a token back and set it as a session. This works great for my own use (even though I have to allow access each time). But how can I change the application to allow others to see my content? All my app does is get /statuses/home_timeline.json. But I want to be able to show the world my stream (arbitrary example). Can I get hold of my token and make a CURL request to the server passing my token? So my users can just see my content without having to go to the authentication page?
is this allowed?
is this save/good practice?
Is there a way I can get this to work?