What shoud I sent to app server from mobile app to be authenticated with Twitter?



Hi everyone,

I would like to let users authenticate into my service from a native Android app via Twitter. I am using a TwitterLoginButton in my Android app. After user is logged in I can access to its oauth_token and oauth_token_secret.

My server uses Laravel Socialite. It should receive some kind of token from the app and perform a verification against Twitter. Socialite expects to receive oauth_token and oauth_verifier. However, this kind of tokens are not available after TwitterCore authentication process (as far as I know).

Of course, I can ignore the current Socialite implementation and send to my server both oauth_token and oauth_token_secret but I think it should not be done due to security reasons.

How should I address the problem? Does anyone face this problem?

Any suggestion is welcome, of course.