Why is Basic Auth still enabled on some sources? - Twitter Development Talk

The old Google Groups will be going away soon, but your browser is incompatible with the new version.

« Groups Home

Twitter Development Talk

Home

Discussions

About this group

Join this group

Message from discussion Why is Basic Auth still enabled on some sources?

funkatron

View profile

More options Sep 14 2010, 5:47 pm

From: funkatron <funkat...@gmail.com>

Date: Tue, 14 Sep 2010 14:47:16 -0700 (PDT)

Local: Tues, Sep 14 2010 5:47 pm

Subject: Re: Why is Basic Auth still enabled on some sources?

Print | View thread | Show original | Report this message | Find messages by this author

I appreciate the response, Ryan.

I'll say that it's a bummer to find out about this in that way.
Twitter made a big deal about how Basic Auth was being shut off, so
finding out that there were exceptions like this is confusing and
disconcerting.

No matter the intent, it is hard to feel respected when you discover
this kind of thing. In the end, whether that matters is up to Twitter
(as an entity, not the individuals who work there, to whom I'm sure it
does matter).

--
Ed Finkler
http://funkatron.com
@funkatron
AIM: funka7ron / ICQ: 3922133 / XMPP:funkat...@gmail.com

On Sep 14, 12:09 pm, Ryan Sarver <rsar...@twitter.com> wrote:

> Ed,

> As part of the migration we worked with many developers to help them with
> the transition and some of them, including our own Android app, had some
> extenuating circumstances that made them unable to make the date. For those
> few exceptions and extreme cases we granted them a stay of execution as long
> as they provided a reasonable timeline to make the transition.

> It pained us to do it for one of our own applications, but I'll give you
> some detail to help you understand why we needed to. And to be clear, we did
> this for a number of non-Twitter applications as well if we deemed their
> situation to be one that needed the stay as well. In the end all of the apps
> that got the stay were mobile apps that were unable to flash new versions
> out to devices on their own schedule and that includes the Android app on a
> number of devices.

> We have a hard shut-off date from Google which is only a few weeks away and
> from every other app that was given an exemption. Rest assured that EVERY
> app will be moved over in a timely fashion, so using their keys will only
> give you a short window to continue to use Basic Auth.

> When looking at all the possible options and scenarios, we think this was
> the right decision in order to move the entire ecosystem over to the new
> authentication model while also being reasonable when we needed to be.

> Best, Ryan

> On Mon, Sep 13, 2010 at 1:40 PM, funkatron <funkat...@gmail.com> wrote:
> > Read on this post:http://blog.nelhage.com/2010/09/dear-twitter/

> > Tested just now:http://gist.github.com/577273

> > If I pass "source=twitterandroid", it appears to work on all API
> > methods.

> > In light of basic auth being "disabled," why does this work?

> > --
> > Ed Finkler
> >http://funkatron.com
> > @funkatron
> > AIM: funka7ron / ICQ: 3922133 / XMPP:funkat...@gmail.com<XMPP%3Afunkat...@gmail.com>

> > --
> > Twitter developer documentation and resources:http://dev.twitter.com/doc
> > API updates via Twitter:http://twitter.com/twitterapi
> > Issues/Enhancements Tracker:
> >http://code.google.com/p/twitter-api/issues/list
> > Change your membership to this group:
> >http://groups.google.com/group/twitter-development-talk?hl=en

Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy

Account Options