so, I just need to retrieve user basic info(/verify_credentials(twitter), /me(facebook) so Im trying to roll my own code for now got it on facebook on second try since all I need is a request to graph.facebook.com/me + access_token but now trying to do it with twitter has been incredibly painful, I just can't figure it out by the docs, so, please, what does a request to twitter api /verify_credentials look like? what are the params? twitter api, y u suck?

Facebook uses oAuth 2.0, which is much easier to implement than oAuth 1.0 (which twitter uses). An example request to verify_credentials API could look like this: <code>https://api.twitter.com/1/account/verify_credentials.json?oauth_consumer_key=XXX&oauth_nonce=XXX&oauth_signature_method=HMAC-SHA1&oauth_token=XXX&oauth_timestamp=123456789&oauth_version=1.0&oauth_signature=YYY</code> <ul> <li>oauth_consumer_key is self explanatory </li> <li>oauth_nonce can be pretty much a random string of characters</li> <li>oauth_signature_method is always HMAC-SHA1</li> <li>oauth_token is your access token </li> <li>oauth_timestamp is current UNIX timestamp (in UTC) </li> <li>oauth_version is always 1.0</li> <li>oauth_signature is your generated signature (which twitter will verify by reproducing)</li> </ul> You generate the value of the oauth_signature parameter by constructing a signature base string which consists of the following parts. <ul> <li>HTTP method in upper case (in this case <code>GET</code>)</li> <li>an ampersand <code>&</code> </li> <li>URL-encoded base URI (everything from <code>https</code> up to and including verify_credentials.json)</li> <li>an ampersand <code>&</code> </li> <li>all request parameters in alphabetical order, url encoded. (oauth_signature should NOT be included in this though)</li> </ul> The pseudo code in the section Signing requests in Twitters documentation describes the signing process elegantly: <pre class="prettyprint"><code>httpMethod + "&" + url_encode( base_uri ) + "&" + sorted_query_params.each { | k, v | url_encode ( k ) + "%3D" + url_encode ( v ) }.join("%26") </code></pre> And then you sign the resulting base string using the consumer secret, and the access token secret. That's all there is too it :) But before issuing any requests to the API you will of course need to actually get an access token. Once you grasp the oAuth 1.0 flow, and the signing process. You'll be home. Twitter's documentation does a great job at explaining the process, but it is a quite a bit to wrap your head around. Worth it though.

what does a twitter /verify_credentials look like?

so, I just need to retrieve user basic info(/verify_credentials(twitter), /me(facebook) so Im trying to roll my own code for now

got it on facebook on second try since all I need is a request to graph.facebook.com/me + access_token

but now trying to do it with twitter has been incredibly painful, I just can't figure it out by the docs, so, please, what does a request to twitter api /verify_credentials look like?

what are the params? twitter api, y u suck?

Where do I find my consumer key for Twitter?

Click on the “Keys and Access Tokens” tab. Your Consumer Key (API Key) and Consumer Secret (API Secret) will be on this tab. You might need to click a button to create your Access Token and Access Token Secret further down the page.

What is a Twitter callback URL?

As users work through these flows, they need a web page or location to be sent to after they have successfully logged in and provided authorization to the developer's App. This follow-up webpage or location is called a callback URL.

What is Twitter API key?

API Key and Secret: Essentially the username and password for your App. You will use these to authenticate requests that require OAuth 1.0a User Context, or to generate other tokens such as user Access Tokens or App Access Token.

Facebook uses oAuth 2.0, which is much easier to implement than oAuth 1.0 (which twitter uses).

An example request to verify_credentials API could look like this:

https://api.twitter.com/1/account/verify_credentials.json?oauth_consumer_key=XXX&oauth_nonce=XXX&oauth_signature_method=HMAC-SHA1&oauth_token=XXX&oauth_timestamp=123456789&oauth_version=1.0&oauth_signature=YYY

oauth_consumer_key is self explanatory
oauth_nonce can be pretty much a random string of characters
oauth_signature_method is always HMAC-SHA1
oauth_token is your access token
oauth_timestamp is current UNIX timestamp (in UTC)
oauth_version is always 1.0
oauth_signature is your generated signature (which twitter will verify by reproducing)

You generate the value of the oauth_signature parameter by constructing a signature base string which consists of the following parts.

HTTP method in upper case (in this case GET)
an ampersand &
URL-encoded base URI (everything from https up to and including verify_credentials.json)
an ampersand &
all request parameters in alphabetical order, url encoded. (oauth_signature should NOT be included in this though)

The pseudo code in the section Signing requests in Twitters documentation describes the signing process elegantly:

httpMethod + "&" +     url_encode(  base_uri ) + "&" +     sorted_query_params.each  { | k, v |         url_encode ( k ) + "%3D" +         url_encode ( v )     }.join("%26")

And then you sign the resulting base string using the consumer secret, and the access token secret. That's all there is too it :)

But before issuing any requests to the API you will of course need to actually get an access token. Once you grasp the oAuth 1.0 flow, and the signing process. You'll be home. Twitter's documentation does a great job at explaining the process, but it is a quite a bit to wrap your head around. Worth it though.

what does a twitter /verify_credentials look like?

Tags:

Breno Salgado

People also ask

1 Answers

Jon Nylander

Recent Activity

Donate For Us

what does a twitter /verify_credentials look like?

Tags:

Breno Salgado

People also ask

1 Answers

Jon Nylander

Related questions

Recent Activity

Donate For Us