"Sign in with twitter" w/o any further rights?

[Nicole Simon]

As I undertand it, a twitter oauth process will give me as the application
either read or read write access. Which means - unless I am mistaken -
that with read access the app can read user's DMs.

If so, would there be a way to have a third status named Authenticate
or anything like it to indicate to the user that this app can 'only'
authenticate and not do anything more?

It could be used for all the "sign in with twitter" plugins on all blog sites,
and site where you use your twitter-id just for quick registration.

In the longer run I would like to be able as a user to say per app what
it is allowed to do.

Nicole

[I have been looking through the archive to see if this was discusses before, and
 my keywords did not yield a response to this question - if there was one, please
 just tell me so. ;)]



--
http://twitter.com/nicolesimon
http://crueltobekind.org