tags:

views:

22

answers:

1
+1  Q: 

While working on Twitter app, do we need to store user specific Access Token/Secret to our local databse

Hi, I am working on a Twitter app. By going through the oAuth documentation and available scripts I am able to redirect the user to my callback uri and am receiving the user access object.

$connection = new TwitterOAuth(CONSUMER_KEY, CONSUMER_SECRET);
/* Get temporary credentials. */
$request_token = $connection->getRequestToken(OAUTH_CALLBACK);

What I understood is this is a permanent access object generated by twitter authorizing my app with this user. Do I need to save it in DB for further use. Is there any legal implications if I store user data.

My understanding is that we have to store the object in our DB and then use it when the user logs next time.

Can anyone confirm if this is the right approach. -Anand

A: 

You can store the access_token in a DB - that's not user data. That's your personal access key to their account. If you were instead storing their username/password to their account, that may be a problem.

xil3  2010-07-06 14:15:36
ok. but isnt that user data is specific to the user.
anand  2010-07-06 14:16:48
Yea, that access_token is specific to that users account, but that's YOUR access_token, not the users. The whole point is to retain that information for further use. If you disgard it everytime, it defeats the whole purpose.
xil3  2010-07-06 14:27:16
point noted. Thanks. Is it enough to keep these two token and the UID whie saving data, because I see rest all are variable and can change at any point of time. Also for communicating with thrid party service,can it be used without making any changes. Third party like Twitpic or other which support oAuth.
anand  2010-07-06 15:41:28
Yeah, once you have the auth_token + auth_token_secret, you just need to store those 2, plus your consumer_key and consumer_secret.... you'll be all set with that.
xil3  2010-07-06 15:44:28
Thans a ton for your quick answers. They really helped me understandign the approach. cheers. have a nice day.
anand  2010-07-06 15:56:28
You're welcome - if you could do me a favour and accept the answer, I'd be really happy :)
xil3  2010-07-06 16:08:35
Sorry @xil3 it was my first post, so didnt knew how to accept the answer. Did it. cheers.
anand  2010-07-07 11:00:59

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases