OpenSource

oauth

#1

Hi,

I want to start working on an opensource twitter client, but because it is opensource i need to know how i can make sure that it is opensource but people wont be able to abuse the auth keys and such. How whould i do this ??

Thank you !


#2

Well, I’d advise you not to include the keys in the source code, but make them part of a configuration file not checked in to source control / only enter them at build time. Anyone who wants to use your code would then have to obtain and register their own keys.

Note that the Developer Policy has limits on the number of tokens available for clients that replicate the core Twitter client experience / functionality.