[twitter-dev] I'm sure you guys know this, but ...

2010-06-14 Thread M. Edward (Ed) Borasky

I'm experiencing multiple chaotic symptoms on the main web application.

1. I post a tweet. I get "Internal System Error" but the tweet posts.
2. I go to my "home page" http://twitter.com/znmeb and it's totally blank.
3. I see multiple copies of tweets and other people see multiple  
copies of mine.
4. Under the tweet box, under the location it says, "Share your first  
tweet with the world"

5. The retweet button was gone, but now it's back.

This is in addition to the fail whales, which seem to have gone away.  
It looks to me like code is being switched in and out of operation in  
a somewhat unplanned manner. Ordinary folks are starting to ask me WTF  
and I have no clue.


The good news is that the "places" selection in the web application is  
giving me a bigger list of possible places. I'm trying now to see  
what's being posted in the tweets.




Re: [twitter-dev] 502 Bad Gateway when trying to receive xml results

2010-06-14 Thread Rajiv Verma™
For now, Twitter is down since the last couple of hours

On Tue, Jun 15, 2010 at 10:33 AM, thomen  wrote:

> Hi Guys,
> I've got an asp.net usercontrol to display twitter feeds.
>
> It requests the xml using this url and then parsing it: "http://
> twitter.com/statuses/user_timeline.xml?
> screen_name=INSERTUSERNAMEHERE&count=INSERTPOSTCOUNTHERE";
>
> ie "http://twitter.com/statuses/user_timeline.xml?
> screen_name=ladygaga&count=5";
>
> public List GetStatusUpdates(string screenName, int
> count)
> {
>string url = String.Format(StatusesUserTimeline, screenName, count);
> //this becomes something like:
> http://twitter.com/statuses/user_timeline.xml?screen_name=ladygaga&count=5
>string xml = FetchXmlFromUrl(url);
>
>return CreateStatusObjectsFromXml(xml, count);
> }
>
> protected virtual string FetchXmlFromUrl(string url)
>{
>using (WebClient client = new WebClient())
>using (Stream s = client.OpenRead(url))
>using (StreamReader sr = new StreamReader(s))
>{
>return sr.ReadToEnd();
>}
>}
>
> etc etc (if you need more code I can provide)
>
> Just starting over the weekend on most of our sites we're now getting
> the response: The remote server returned an error: (502) Bad Gateway
> when trying to fetch the xml from the url
>
> just wondering what would cause the 502???
>
> the usercontrol is cached so we don't exceed the request limit..
>



-- 
Thanks & Regards
Rajiv Verma
Bangalore
E-Mail: rajiv@gmail.com
Ph: +91-92430-12766
Go Green, Use minimum natural resources!


[twitter-dev] 502 Bad Gateway when trying to receive xml results

2010-06-14 Thread thomen
Hi Guys,
I've got an asp.net usercontrol to display twitter feeds.

It requests the xml using this url and then parsing it: "http://
twitter.com/statuses/user_timeline.xml?
screen_name=INSERTUSERNAMEHERE&count=INSERTPOSTCOUNTHERE";

ie "http://twitter.com/statuses/user_timeline.xml?
screen_name=ladygaga&count=5";

public List GetStatusUpdates(string screenName, int
count)
{
string url = String.Format(StatusesUserTimeline, screenName, count);
//this becomes something like: 
http://twitter.com/statuses/user_timeline.xml?screen_name=ladygaga&count=5
string xml = FetchXmlFromUrl(url);

return CreateStatusObjectsFromXml(xml, count);
}

protected virtual string FetchXmlFromUrl(string url)
{
using (WebClient client = new WebClient())
using (Stream s = client.OpenRead(url))
using (StreamReader sr = new StreamReader(s))
{
return sr.ReadToEnd();
}
}

etc etc (if you need more code I can provide)

Just starting over the weekend on most of our sites we're now getting
the response: The remote server returned an error: (502) Bad Gateway
when trying to fetch the xml from the url

just wondering what would cause the 502???

the usercontrol is cached so we don't exceed the request limit..


[twitter-dev] Re: Fail Whale

2010-06-14 Thread Ron B
Thanks!

On Jun 14, 11:46 pm, John Kalucki  wrote:
> Check the status blog for this sorts of things.
>
> http://status.twitter.com
>
> -John Kaluckihttp://twitter.com/jkalucki
> Infrastructure, Twitter Inc.
>
>
>
> On Mon, Jun 14, 2010 at 9:45 PM, Rajiv Verma™  wrote:
> > Yes!! Here too...
>
> > I am from India FYI
>
> > On Tue, Jun 15, 2010 at 10:13 AM, Ron B  wrote:
>
> >> Anybody else noticing that Twitter appears to be down hard at the
> >> moment (actually for about 20 mins now)?
>
> > --
> > Thanks & Regards
> > Rajiv Verma
> > Bangalore
> > E-Mail: rajiv@gmail.com
> > Ph: +91-92430-12766
> > Go Green, Use minimum natural resources!


Re: [twitter-dev] Fail Whale

2010-06-14 Thread John Kalucki
Check the status blog for this sorts of things.

http://status.twitter.com

-John Kalucki
http://twitter.com/jkalucki
Infrastructure, Twitter Inc.



On Mon, Jun 14, 2010 at 9:45 PM, Rajiv Verma™  wrote:
> Yes!! Here too...
>
> I am from India FYI
>
> On Tue, Jun 15, 2010 at 10:13 AM, Ron B  wrote:
>>
>> Anybody else noticing that Twitter appears to be down hard at the
>> moment (actually for about 20 mins now)?
>
>
> --
> Thanks & Regards
> Rajiv Verma
> Bangalore
> E-Mail: rajiv@gmail.com
> Ph: +91-92430-12766
> Go Green, Use minimum natural resources!
>


Re: [twitter-dev] Fail Whale

2010-06-14 Thread Rajiv Verma™
Yes!! Here too...

I am from India FYI

On Tue, Jun 15, 2010 at 10:13 AM, Ron B  wrote:

> Anybody else noticing that Twitter appears to be down hard at the
> moment (actually for about 20 mins now)?




-- 
Thanks & Regards
Rajiv Verma
Bangalore
E-Mail: rajiv@gmail.com
Ph: +91-92430-12766
Go Green, Use minimum natural resources!


[twitter-dev] Fail Whale

2010-06-14 Thread Ron B
Anybody else noticing that Twitter appears to be down hard at the
moment (actually for about 20 mins now)?


Re: [twitter-dev] Keep it real

2010-06-14 Thread Cameron Kaiser
> I just wanted to let everyone know that I won't be on the list much going
> forward. Reading the list has become a time consuming burden (1000+
> emails/month) and much of it has become reiteration for me. Getting more
> time on my own projects and paying for the roof over my head are top
> priorities right now. But if you have questions pertaining to me feel free
> to cc me on them and I will be more then happy to jump in.

Man, does this mean I have to talk to you on Twitter now? ;-)

-- 
 personal: http://www.cameronkaiser.com/ --
  Cameron Kaiser * Floodgap Systems * www.floodgap.com * ckai...@floodgap.com
-- The only thing to fear is fearlessness -- R. E. M. -


Re: [twitter-dev] Keep it real

2010-06-14 Thread Chad Etzel
Abraham,

Thank you for all your help and contribution to this community. I know
lots of people (including myself) who owe you a debt of gratitude for
the help you have given here. I feel your pain, so to speak, as I have
become similarly recluse on this list. I'm sure we'll see you lurking
around every so often :)

-Chad

On Mon, Jun 14, 2010 at 9:13 PM, Abraham Williams <4bra...@gmail.com> wrote:
> I just wanted to let everyone know that I won't be on the list much going
> forward. Reading the list has become a time consuming burden (1000+
> emails/month) and much of it has become reiteration for me. Getting more
> time on my own projects and paying for the roof over my head are top
> priorities right now. But if you have questions pertaining to me feel free
> to cc me on them and I will be more then happy to jump in.
> If you are interested in hiring me for Twitter integration projects
> (especially OAuth with just over 2 weeks left) or just want to say hi you
> can reach me as 4bra...@gmail.com or @abraham.
> Oh. I have several Twitter API related blog posts in draft so be sure to
> look for them on http://blog.abrah.am/.
> I'll be around :)
> Abraham
> -
> Abraham Williams | Hacker Advocate | http://abrah.am
> @abraham | http://projects.abrah.am | http://blog.abrah.am
> This email is: [ ] shareable [x] ask first [ ] private.
>


Re: [twitter-dev] Keep it real

2010-06-14 Thread Peter Denton
you've been incredibly helpful to everyone in the community. Thanks for all
of your help.

Cheers

On Mon, Jun 14, 2010 at 9:13 PM, Abraham Williams <4bra...@gmail.com> wrote:

> I just wanted to let everyone know that I won't be on the list much going
> forward. Reading the list has become a time consuming burden (1000+
> emails/month) and much of it has become reiteration for me. Getting more
> time on my own projects and paying for the roof over my head are top
> priorities right now. But if you have questions pertaining to me feel free
> to cc me on them and I will be more then happy to jump in.
>
> If you are interested in hiring me for Twitter integration projects
> (especially OAuth with just over 2 weeks left) or just want to say hi you
> can reach me as 4bra...@gmail.com or @abraham.
>
> Oh. I have several Twitter API related blog posts in draft so be sure to
> look for them on http://blog.abrah.am/.
>
> I'll be around :)
> Abraham
> -
> Abraham Williams | Hacker Advocate | http://abrah.am
> @abraham | http://projects.abrah.am | http://blog.abrah.am
> This email is: [ ] shareable [x] ask first [ ] private.
>


[twitter-dev] Keep it real

2010-06-14 Thread Abraham Williams
I just wanted to let everyone know that I won't be on the list much going
forward. Reading the list has become a time consuming burden (1000+
emails/month) and much of it has become reiteration for me. Getting more
time on my own projects and paying for the roof over my head are top
priorities right now. But if you have questions pertaining to me feel free
to cc me on them and I will be more then happy to jump in.

If you are interested in hiring me for Twitter integration projects
(especially OAuth with just over 2 weeks left) or just want to say hi you
can reach me as 4bra...@gmail.com or @abraham.

Oh. I have several Twitter API related blog posts in draft so be sure to
look for them on http://blog.abrah.am/.

I'll be around :)
Abraham
-
Abraham Williams | Hacker Advocate | http://abrah.am
@abraham | http://projects.abrah.am | http://blog.abrah.am
This email is: [ ] shareable [x] ask first [ ] private.


[twitter-dev] Atom Search

2010-06-14 Thread micahalcorn
I am new to Twitter, and Rails for that matter. I am trying to create
a new parsing method to use Feedzirra for fulling tweets. Is there a
list of each field available using the atom format? I see the fields
listed in the json example at http://dev.twitter.com/doc/get/search,
but I understand that atom offers at least an "author" field, and does
not offer as many fields as json.

Thanks!


[twitter-dev] Using OAuth with a one-user application

2010-06-14 Thread Felipe Sodré Silva
Hi everyone.

I'm brand new to OAuth and have read some documents on how it works, but
there's something that is still not clear to me.

Let's say I want to build an application in which I want to allow a group of
people to send updates through a unique twitter account
(@nice_group_of_people, for example).

If I use OAuth for this, do I need to get a new Access Token for every
update my application sends on behalf of @nice_group_of_people, or can I
just do it once and store the Access Token forever? Does the Access Token
expires somehow?

Best Regards,

Felipe


[twitter-dev] response when limit reached - when did this change?

2010-06-14 Thread Moshe C.
I used to get an HTTP "Bad request" error when passing the rate limit
and used that to make my process sleep.
Now this evidently changed and I am getting:


  /1/statuses/user_timeline.rss?
user_id=12765&count=100&since_id=1626417105
  Rate limit exceeded. Clients may not make more than 2
requests per hour.


Which was ignored and caused me to pound on the server.


When was this changed?
Is this new response subject to changes in the near future?

I couldn't fund the doc page on this.


[twitter-dev] Recent Places-related API enhancements & more to come...

2010-06-14 Thread Taylor Singletary
Hi Developers,

Today we're launching some of the functionality around "Places" that we
announced at Chirp. You can read more about the feature here:
http://blog.twitter.com/2010/06/twitter-places-more-context-for-your.html

The launch comes with a batch of API enhancements, with a number of further
API additions just around the corner (like creating and updating places,
obviously a crucial component for many implementors).

The documentation in this area is a honestly a bit light at the moment, but
we'll be offering some more comprehensive documentation going over suggested
use cases, flows, and more in the coming days.

What matters most for you:
  - GET geo/nearby_places is now GET geo/search, with some added
functionality. This is a companion to GET geo/reverse_geocode, that's ideal
for using in conjunction with a place selection UI.
Read all about it at : http://bit.ly/dvNmYB
- A query parameter called "query" lets you do textual matching when
trying to find a place
- A query parameter called "ip" lets you do a lookup based on an IP
address
- You can fine tune results with granularity, accuracy, and the
contained_within parameter, which allows you to identify a place_id
(matching something like a city), and only search for places within that
place.

  -  tags in XML output, "place" attribute in JSON output:

Tweets that have a place_id associated with them can now contain some
additional information not available in the past, including some attributes
that further describe the location.


Some common place/attributes you might start seeing:
  - name
  - street_address
  - locality
  - region
  - phone
  - postal_code
  - twitter (a twitter account associated with the place)
  - cross_streets

Attribute key names can be variant. These are just some of the attribute
keys you will see, with much more to come.


Here's a quick XML representation of a status with a place:

  Mon Jun 14 23:30:14 + 2010
  16184038366
  I'm testing out places integrations. Can you hear me Planet
Houston? I'm at the Epicenter. (psyche)
  web
  false
  
  
  false
  
  
819797
Taylor Singletary
episod
iPhone: 37.778181,-122.397971
Reality Technician, Developer Advocate at Twitter,
displeased at Planet Houston

http://a1.twimg.com/profile_images/989643540/zod_normal.jpg

http://bit.ly/5w7P88
false
1461
00
00
731673
007ffe
bb0e79
1420
Wed Mar 07 22:23:19 + 2007
254
-28800
Pacific Time (US & Canada)

http://a3.twimg.com/profile_background_images/19651315/fiberoptics.jpg

true
false
true
false
false
6477
en
false
  
  
  
  http://www.georss.org/georss";>
a851ec943d3a27c5
Epicenter Cafe
Epicenter Cafe, San Francisco
poi
http://api.twitter.com/1/geo/id/a851ec943d3a27c5.json

  
street_address
764 Harrison St
  


  37.781343 -122.399142 37.781343 -122.399142
37.781343 -122.399142 37.781343 -122.399142

The United States of America
  
  
  


And here's the JSON representation:
{
"in_reply_to_user_id": null,
"geo": null,
"source": "web",
"created_at": "Mon Jun 14 23:30:14 + 2010",
"place": {
"place_type": "poi",
"country_code": "US",
"attributes": {
"street_address": "764 Harrison St"
},
"country": "The United States of America",
"full_name": "Epicenter Cafe, San Francisco",
"url": "http://api.twitter.com/1/geo/id/a851ec943d3a27c5.json";,
"name": "Epicenter Cafe",
"id": "a851ec943d3a27c5",
"bounding_box": {
"type": "Polygon",
"coordinates": [[[ - 122.399142, 37.781343], [ - 122.399142,
37.781343], [ - 122.399142, 37.781343], [ - 122.399142, 37.781343]]]
}
},
"in_reply_to_screen_name": null,
"favorited": false,
"truncated": false,
"annotations": null,
"user": {
"profile_background_image_url": "
http://a3.twimg.com/profile_background_images/19651315/fiberoptics.jpg";,
"profile_image_url": "
http://a1.twimg.com/profile_images/989643540/zod_normal.jpg";,
"description": "Reality Technician, Developer Advocate at
Twitter, displeased at Planet Houston",
"lang": "en",
"statuses_count": 6477,
"profile_sidebar_fill_color": "007ffe",
"profile_background_tile": true,
"screen_name": "episod",
"contributors_enabled": false,
"profile_sidebar_border_color": "bb0e79",
"following": false,
   

[twitter-dev] TwAPIme 1.3 now supporting xAuth

2010-06-14 Thread Ernandes Jr.
Hi,

I am pleased to announce that I have just uploaded the new version of *
TwAPIme* with *xAuth* support. TwAPIme is mobile Java API for Java ME and
Android developers that want to create applications that access Twitter
API's services.

Check out how easy is it to work with TwAPIme and xAuth:

...

Credential c = *new* Credential("john", "foobar", "usdhjhe767djsahda0kjdska",
"dsadahd8978e3qejsnddjdhf8");

UserAccountManager m = UserAccountManager.getInstance(c);


*if* (m.verifyCredential()) {

TweetER ter = TweetER.getInstance(m);

ter.post(new Tweet("My tweet from TwAPIme 1.3. #likethis"));

} *else* {

System.out.println("Login failed!");

}

...

For more details on TwAPIme 1.3, access www.twitterapime.com

Regards,

-- 
Ernandes Jr.
-
"ALL programs are poems. However,
NOT all programmers are poets."


[twitter-dev] Re: Only getting up to page 5 on user_timeline

2010-06-14 Thread invadermedia
Just got a reply from them here:
http://code.google.com/p/twitter-api/issues/detail?id=1693&colspec=ID%20Stars%20Type%20Status%20Priority%20Owner%20Summary%20Opened%20Modified%20Component

On Jun 14, 8:05 am, Raymond Yee  wrote:
> I've been having the same problem and wrote about it in an earlier
> post:  
> http://groups.google.com/group/twitter-development-talk/msg/0085b06eb...
> I'm also still waiting for an answer to this question.
>
> -Raymond
>
> On Jun 12, 4:00 pm, invadermedia  wrote:
>
>
>
> > I can't access past page 5 on any account when I'm checking for 200
> > tweets at a time. Page 6 returns no tweets.
>
> > I should be able to access up to 16 pages to get 3200 tweets. I have
> > been able to retrieve that up until I tried again Friday. Is this a
> > temporary limit?
>
> > Here is an 
> > example:http://api.twitter.com/1/statuses/user_timeline.xml?screen_name=KimKa...


[twitter-dev] Re: Retrieving older tweets from less-active accounts

2010-06-14 Thread Zhami

On Jun 14, 5:04 pm, Matt Harris  wrote:
> Search only includes Tweets for the last ~7 days.

This makes sense with what I'm experiencing... but then I wonder: Why
does the Web interface for search.twitter.com/advanced have controls
to input a "Since this date" date?

btw: my question regards searching for a term, not a source.

Also: is it possible to use some API query to search for older tweets?


Re: [twitter-dev] Retrieving older tweets from less-active accounts

2010-06-14 Thread Matt Harris

Hi Josh,

Search only includes Tweets for the last ~7 days. If you wish to  
retrieve tweets older than this for the user you could use the  
user_timeline method of the API or for a simpler dataset look at their  
RSS.


Hope that helps,

Matt Harris
Developer Advocate, Twitter
http://twitter.com/themattharris

On Jun 14, 2010, at 22:12, Josh Santangelo  wrote:


For example: 
https://search.twitter.com/search.atom?q=From:stimulant&page=1&rpp=100&since_id=0&result_type=recent

The account "stimulant" hasn't posted for a few weeks, but does have
tweets. However none are returned in that query.

I tried different values for "page" and "until" with no luck.


[twitter-dev] Re: Kwwika - World Cup Web Development competition announced using Twitter World Cup data

2010-06-14 Thread Phil Leggetter
Hi Dean,

Not really :o)

I'm looking to try and drum up some interest in this competition. In
addition to real-time twitter push updates we'll also be pushing out
some world class World Cup sports data to be used in the mashup.

Phil

On Jun 12, 7:40 pm, "Dean Collins"  wrote:
> Hi Phil,
>
> Check out the twitter integration withwww.LiveWorldCupChat.comif
> that's what you want.
>
> Cheers,
> Dean
>
> > -Original Message-
> > From: twitter-development-talk@googlegroups.com
>
> [mailto:twitter-development-
>
>
>
> > t...@googlegroups.com] On Behalf Of Phil Leggetter
> > Sent: Saturday, 12 June 2010 11:13 AM
> > To: Twitter Development Talk
> > Subject: [twitter-dev] Kwwika - World Cup Web Development competition
> announced
> > using Twitter World Cup data
>
> > Hello all!
>
> > I'm working on a project called Kwwika which allows anybody to add
> > real-time push functionality to your website. To try and get people
> > developing using Kwwika we've decided to create a competition that
> > will hopefully encourage web developers to sign up for the opportunity
> > of winning an Apple iPad.
>
> > The reason I'm messaging the group is that the majority of data that
> > we are using is from the Twitter streaming API, something a lot of you
> > may be familiar with.
>
> > The purpose of the competition is to see who can build the most
> > engaging real-time push World Cup 2010 web application.
>
> > More details can be found in the following locations:
>
> > * Blog post announcment:
>
> http://blog.kwwika.com/kwwika-world-cup-2010-real-> time-push-web-app
> > * Kwwika Wiki with competition details:
>
> http://wiki.kwwika.com/competitions/world-cup-2010-real-time-push-web-ap
> p-
>
>
>
> > competition
> > * A real-time push World Cup demo created to give people an idea of
> > what can be built:
> >http://kwwika.com/Standalone/Demos/WorldCup2010/#SouthAfrica
>
> > If you have any questions or idea please feel free to get in touch
> > with me via p...@kwwika.com
>
> > Thanks,
>
> > Phil Leggetter


[twitter-dev] Retrieving older tweets from less-active accounts

2010-06-14 Thread Josh Santangelo
For example: 
https://search.twitter.com/search.atom?q=From:stimulant&page=1&rpp=100&since_id=0&result_type=recent

The account "stimulant" hasn't posted for a few weeks, but does have
tweets. However none are returned in that query.

I tried different values for "page" and "until" with no luck.


[twitter-dev] Re: Question on handling oAuth Echo using twitteroauth lib

2010-06-14 Thread YCBM
Seems like I'm pretty close with at least getting an error back from
Twitter.

I'm taking the X-Auth-Service-Provider and setting it as CURLOPT_URL.
and taking the X-Verify-Credentials-Authorization from the header and
trying to set that as the CURLOPT_HTTPHEADER.

Doesn't appear to work.  Does it need to be sent as a
CURLOPT_POSTFIELDS as is?



On Jun 14, 1:33 pm, YCBM  wrote:
> Hi All,
>
> Looking to use Abraham's twitteroauth lib on our site which is already
> converted to oAuth for web-based login.
>
> We have an open API that other apps (consumers -- if i understand that
> correctly) will be posting to using oAuth Echo.
>
> Are there any sample PHP code that I can take a look at in which the
> PHP script receives the post from the consumer and takes the header
> stuff to verify the user on Twitter?  Specifically in the oAuth Echo
> flow?
>
> I created a PHP script to simulate the consumer post to me which
> includes the oauth_consumer_key, oauth_signature_method, oauth_token,
> oauth_timestamp, oauth_nonce, oauth_version, oauth_signature, X-Auth-
> Service-Provider, X-Verify-Credentials-Authorization and the signing
> URL.
>
> Once I post these to my PHP script, not quite sure what to do to
> verify the user.  Perhaps I can use the twitteroauth and just fill in
> some blanks?  Sample code will be extremely helpful.
>
> Thanks in advance.
> Y


Re: [twitter-dev] Re: Coming soon: a solution for Open Source applications using OAuth with the Twitter API

2010-06-14 Thread Bernd Stramm

Interesting details, and see below:

On Mon, 14 Jun 2010 10:51:34 -0700
Zac Bowling  wrote:

> In facebook's desktop authflow, rather then giving you an
> ...

> Basically when it comes to desktop apps, Facebook can't for sure tell
> the difference between my desktop app and illegitimate one.

Not only that, they (or anyone) cannot tell a legitimate desktop from an
illegitimate one. An illegitimate person can take a desktop with a
bunch of legitimate apps and do illegitimate things with the whole
collection. 

And then we should not forget that a mobile phone is a the same as a
desktop, from the point of view of the web server. Phones are usually
not protected very well, both in terms of autheticating users and in
physical terms.

What is it that makes an app illegitimate? Basically that is
impersonates the user, and does things the user doesn't want done.

Unless of course the app does business on behalf of a third party with
both the user and the server (twitter, facebook, ...). Collecting data
is "doing business" in this sense. Then the app is an agent for that
third party.

But for a lot of apps, this is not the case, they act entirely as an
agent for the user. They are no different than browsers in this respect.


-- 
Bernd Stramm




[twitter-dev] Re: Trends-API not working

2010-06-14 Thread Richard Coleman
Allow me to correct the message above:

http://search.twitter.com/trends.json?date=2010-06-14

On Jun 14, 5:15 pm, Richard Coleman  wrote:
> Try this one instead:
>
> http://search.twitter.com/trends.json?date=2010-03-05%20
>
> On Jun 14, 10:24 am, "dennisp@web.de"  wrote:
>
>
>
> > Hi,
>
> > I got a problem using the Twitter-API, especially the Trends-Data.
> > When calling the 
> > URLhttp://search.twitter.com/trends/daily.json?date=2010-03-05
> > (or another date), i just get an empty JSON-object back. If I use the
> > new URLhttp://api.twitter.com/1/trends/daily.json?date=2010-03-05I
> > always get a 404 - Not Found Exception. Some dates return a non-empty
> > JSON-string, but most of them do.
> > The last time I used the API everything works fine, but after not
> > looking for it for a few weeks, I ran into this trouble.
>
> > Does anyone have these troubles, too?


Re: [twitter-dev] Re: Coming soon: a solution for Open Source applications using OAuth with the Twitter API

2010-06-14 Thread Zac Bowling
In facebook's desktop authflow, rather then giving you an access_token endpoint 
to call with a secret to exchange a callback and get an valid access_token, you 
instead call authorize and it will redirect the user to a login_success.html 
page on facebook.com with the access token in a fragment on that page. (see 
http://developers.facebook.com/docs/authentication/desktop )

Their idea is that if you can embed a browser and get the user to authenticate 
through it, you can inspect the url of the embedded browser and detect when it 
hits login_success.html and take the access token fragment and store it.

However, what is interesting about that is that I can embed client_ids I stole 
from other desktop apps (and possibly other web apps if they don't protect 
against it) and generate valid access_tokens against other ids in my own 
desktop app. The user may notice the app they authorize isn't the one they are 
using because because facebook identifies the app with its name and icon on the 
authorize page. However if I'm being evil, i could social engineer the user 
some how like I could name my app the same as the one I'm stealing or something 
similar and use the same icon, and then I can get access tokens like I'm that 
app. 

Basically when it comes to desktop apps, Facebook can't for sure tell the 
difference between my desktop app and illegitimate one. If Facebook blocks 
entire apps or rate limits by them, then I can still DOS the app by using their 
client_id. It doesn't offer anymore application identity protection then just 
embedding a secret and using the OAuth 1.0a flow and embedding secrets. 

Facebook probably realizes this. Since you can mark your app as a desktop app 
and not a web app in your app settings, they probably realize this issue and 
know that you can't always trust the desktop clients so why even bother with 
secrets (probably good that they ask your app type upfront for this reason and 
it doesn't give a false sense of security by even having a secret). From an 
operations perspective for FB, it gives them less options to safely 
blacklisting desktop apps without taking out legitimate ones though.


Zac Bowling
@zbowling



On Jun 14, 2010, at 10:00 AM, Jef Poskanzer wrote:

> Yeah, what Ryan said.
> 
> Also,
> 
> On Jun 13, 1:40 pm, segphault  wrote:
>> Facebook and Google Buzz both offer desktop-appropriate OAuth
>> authentication flows which do not require a consumer secret key and do
>> not require the user to go through a complicated copy/paste process.
> 
> I'm curious what they are doing.  Do they give up on identifying the
> application and just identify the user?



[twitter-dev] Question on handling oAuth Echo using twitteroauth lib

2010-06-14 Thread YCBM
Hi All,

Looking to use Abraham's twitteroauth lib on our site which is already
converted to oAuth for web-based login.

We have an open API that other apps (consumers -- if i understand that
correctly) will be posting to using oAuth Echo.

Are there any sample PHP code that I can take a look at in which the
PHP script receives the post from the consumer and takes the header
stuff to verify the user on Twitter?  Specifically in the oAuth Echo
flow?

I created a PHP script to simulate the consumer post to me which
includes the oauth_consumer_key, oauth_signature_method, oauth_token,
oauth_timestamp, oauth_nonce, oauth_version, oauth_signature, X-Auth-
Service-Provider, X-Verify-Credentials-Authorization and the signing
URL.

Once I post these to my PHP script, not quite sure what to do to
verify the user.  Perhaps I can use the twitteroauth and just fill in
some blanks?  Sample code will be extremely helpful.

Thanks in advance.
Y


[twitter-dev] Re: Coming soon: a solution for Open Source applications using OAuth with the Twitter API

2010-06-14 Thread Jef Poskanzer
Yeah, what Ryan said.

Also,

On Jun 13, 1:40 pm, segphault  wrote:
> Facebook and Google Buzz both offer desktop-appropriate OAuth
> authentication flows which do not require a consumer secret key and do
> not require the user to go through a complicated copy/paste process.

I'm curious what they are doing.  Do they give up on identifying the
application and just identify the user?


Re: [twitter-dev] help!! 'Invalid / used nonce' problem about twitter api on google app engine

2010-06-14 Thread Taylor Singletary
Are you repeating the process to get the access token on every authenticated
request, or are taking your access token components from a database (or
other storage medium) and re-using them?

Taylor Singletary
Developer Advocate, Twitter
http://twitter.com/episod


On Sun, Jun 13, 2010 at 8:53 AM, ggcc11  wrote:

> I create a jsp project about twitter api.When I run it on my own local
> jsp server,tomcat,it works correctly.So I upload it to google app
> engine.On the app engine,If I visit the unnecessary authorized
> api,such as public_timeline,it works well.But when it need
> authorize,such as home_timeline,it always response the 'Invalid / used
> nonce' error.Why?
>
> here is the location detail:
> my location:China
> google app engine's location:may be US,absolutely not in China
>
> When program get the access_token,it will send request to
> home_timeline.
> There are two http head from twitter api via two different web server:
>
> google app engine:
> OAuth oauth_consumer_key="9WXY7kD9XiznbN4zRMyNuA",
> oauth_nonce="92fa4a6aa648672cf26dbb05a9b4a744",
> oauth_signature="iq9N97qB1x9Ae251cxv%2Bvvmyjn0%3D",
> oauth_signature_method="HMAC-SHA1", oauth_timestamp="1276437638",
> oauth_token="154805754-WwhuUbBdwmfOcajq0jxfDg4Ers8St4N6lHe3FmrU",
> oauth_version="1.0"
>
> my local tomcat:
> OAuth oauth_consumer_key="9WXY7kD9XiznbN4zRMyNuA",
> oauth_nonce="4e3de3e506b8cf961d3d02d2aca1c8ed",
> oauth_signature="860zZiqdK9DuXOvUDBLZMMhgm2M%3D",
> oauth_signature_method="HMAC-SHA1", oauth_timestamp="1276437655",
> oauth_token="154805754-WwhuUbBdwmfOcajq0jxfDg4Ers8St4N6lHe3FmrU",
> oauth_version="1.0"
>
> part of code:
>
> tk = sb.getAccessToken(tk, pin);
> req = new Request(Request.Verb.GET,"http://api.twitter.com/statuses/
> home_timeline.xml");
> sb.signRequest(req, tk);
> resp = req.send();
> out.println(resp.getBody());
> res=req.getHeaders().get("Authorization");
> System.out.println(res);
>
> ps:
> pin is the user authorized code,
> tk is the access_token,
> signRequest means add the tk to request stream,
> the result will be printed to the web browser,
> res is the http header which like I mentioned above.
>
> Need any more infomation?
>
> Thanks for tolerating my ravings
>


[twitter-dev] Re: Trends-API not working

2010-06-14 Thread Richard Coleman
Try this one instead:

http://search.twitter.com/trends.json?date=2010-03-05%20


On Jun 14, 10:24 am, "dennisp@web.de"  wrote:
> Hi,
>
> I got a problem using the Twitter-API, especially the Trends-Data.
> When calling the 
> URLhttp://search.twitter.com/trends/daily.json?date=2010-03-05
> (or another date), i just get an empty JSON-object back. If I use the
> new URLhttp://api.twitter.com/1/trends/daily.json?date=2010-03-05I
> always get a 404 - Not Found Exception. Some dates return a non-empty
> JSON-string, but most of them do.
> The last time I used the API everything works fine, but after not
> looking for it for a few weeks, I ran into this trouble.
>
> Does anyone have these troubles, too?


Re: [twitter-dev] If 30 June oAuth Ends ...

2010-06-14 Thread Felix Kunsmann

Am 14.06.2010 um 13:58 schrieb ehm mhe:

> If 30 June oAuth Ends will be after 30 June works this php script?
> 
> http://morethanseven.net/2007/01/20/posting-to-twitter-using-php.html

This Script is using Basic Auth, so it will not work after June 30.

Gruß,
Felix Kunsmann - 

-- 
Blog: 
Galerie: 



[twitter-dev] Twitter API: Replies to the Tweets posted by a user

2010-06-14 Thread Abhishek Gohil
Hello,
I am using Twitter API to update status / tweet on twitter from my
application. I have a question: Is there a way to get all the replies
to the status updates / tweets that are made by a user? I went through
the FAQ list and found that currently twitter API does not have this.
I just wanted to check when can we (Twitter API users) expect this to
happen?

Thanking you in advance.

Regards,
Abhishek Gohil
Technical Leader


[twitter-dev] how to use 'count' and 'page' parameters on statuses/user_timeline?

2010-06-14 Thread bnaegava
When i use statuses/home_timeline like below line:
http://api.twitter.com/1/statuses/home_timeline.xml
it works exactly fine with correct authentication.

but when i use same function with the parameters, like:
http://api.twitter.com/1/statuses/home_timeline.xml?count=20
api server responds a error message:
The operation couldn’t be completed. (NSURLErrorDomain error -1012.)

I can't get any points of these issues :(


[twitter-dev] If 30 June oAuth Ends ...

2010-06-14 Thread ehm mhe
If 30 June oAuth Ends will be after 30 June works this php script?

http://morethanseven.net/2007/01/20/posting-to-twitter-using-php.html


[twitter-dev] Search + App Engine = Bad News... OAuth soon please?

2010-06-14 Thread Ben Hedrington
The current Search API has a lot of rate limiting issues when used on
App Engine (User Agent just doesn't make it work) making it
unreliable. I have an app (http://www.connecttweet.com/) that a fair
amount of people (for what it is) are using in Alpha mode that I'd
like to make publicly available but I don't feel I can until searching
is more reliable...

OAuth for Search would be perfect, I am searching on a users behalf as
part of the app and already have their tokens. Can you shed any light
on when this will be possible? I'd offer to be part of an alpha or
beta on your end just to get this problem resolved.

Thanks,
-Ben
blog: http://buildcontext.com


[twitter-dev] Trends-API not working

2010-06-14 Thread dennisp....@web.de
Hi,

I got a problem using the Twitter-API, especially the Trends-Data.
When calling the URL http://search.twitter.com/trends/daily.json?date=2010-03-05
(or another date), i just get an empty JSON-object back. If I use the
new URL http://api.twitter.com/1/trends/daily.json?date=2010-03-05 I
always get a 404 - Not Found Exception. Some dates return a non-empty
JSON-string, but most of them do.
The last time I used the API everything works fine, but after not
looking for it for a few weeks, I ran into this trouble.

Does anyone have these troubles, too?


[twitter-dev] help!! 'Invalid / used nonce' problem about twitter api on google app engine

2010-06-14 Thread ggcc11
I create a jsp project about twitter api.When I run it on my own local
jsp server,tomcat,it works correctly.So I upload it to google app
engine.On the app engine,If I visit the unnecessary authorized
api,such as public_timeline,it works well.But when it need
authorize,such as home_timeline,it always response the 'Invalid / used
nonce' error.Why?

here is the location detail:
my location:China
google app engine's location:may be US,absolutely not in China

When program get the access_token,it will send request to
home_timeline.
There are two http head from twitter api via two different web server:

google app engine:
OAuth oauth_consumer_key="9WXY7kD9XiznbN4zRMyNuA",
oauth_nonce="92fa4a6aa648672cf26dbb05a9b4a744",
oauth_signature="iq9N97qB1x9Ae251cxv%2Bvvmyjn0%3D",
oauth_signature_method="HMAC-SHA1", oauth_timestamp="1276437638",
oauth_token="154805754-WwhuUbBdwmfOcajq0jxfDg4Ers8St4N6lHe3FmrU",
oauth_version="1.0"

my local tomcat:
OAuth oauth_consumer_key="9WXY7kD9XiznbN4zRMyNuA",
oauth_nonce="4e3de3e506b8cf961d3d02d2aca1c8ed",
oauth_signature="860zZiqdK9DuXOvUDBLZMMhgm2M%3D",
oauth_signature_method="HMAC-SHA1", oauth_timestamp="1276437655",
oauth_token="154805754-WwhuUbBdwmfOcajq0jxfDg4Ers8St4N6lHe3FmrU",
oauth_version="1.0"

part of code:

tk = sb.getAccessToken(tk, pin);
req = new Request(Request.Verb.GET,"http://api.twitter.com/statuses/
home_timeline.xml");
sb.signRequest(req, tk);
resp = req.send();
out.println(resp.getBody());
res=req.getHeaders().get("Authorization");
System.out.println(res);

ps:
pin is the user authorized code,
tk is the access_token,
signRequest means add the tk to request stream,
the result will be printed to the web browser,
res is the http header which like I mentioned above.

Need any more infomation?

Thanks for tolerating my ravings


[twitter-dev] PHP HTTPRequest Couldn't Connect to Server

2010-06-14 Thread Stephen
I am attempting to write a simple extension for my site's news
interface in PHP. I'm running into a problem with getting the
oauth_token from the server - I am unable to connect. I suspect this
may be an SSL issue, as I am entirely lost on exactly how SSL plays
into this beyond the fact that it is an https connection. The
documentation, as far as I can see, only says "Use SSL" but never
actually says what for.

A simple little debug page I've been using to test things out:

https://api.twitter.com/oauth/
request_token/", HTTP_METH_POST) or print ("CANNOT MAKE TWITTER");
print "MADE\n";
print "SETTING UP SSL...";
$TWITTER->setSslOptions(array("ENGINE_DEFAULT" => 1, "PASSWD" =>
$privatekey));
print "SET UP\n";
print "ADDING HEADERS...";
$TWITTER->addHeaders(array("Authorization" => $auth)) or print
("CANNOT ADD HEADERS");
print "ADDED\n";
print "ADDING POST...";
$TWITTER->setRawPostData($post_stuff);
print "ADDED\n";
print "SENDING...";
try {
print $TWITTER->send()->__toString();
}
catch (HttpException $ex) {
print $ex."\n";
}
print "SENT\n";
print "REPLY: ".($TWITTER->getRawResponseMessage() or ("NO
RESPONSE"));
?>

And the resulting output:
Authorization: OAuth oauth_nonce="1b3b21dba5a3cbbc01e756bd7159ed3b",
oauth_callback="[DEBUG_PAGE]", oauth_signature_method="HMAC-SHA1",
oauth_timestamp="1276492389", oauth_consumer_key="[MY_KEY]",
oauth_signature="9fbGTC41F65DzFHG8RxRe6rW61A%3D", oauth_version="1.0"
Post Data: POST&https%3A%2F%2Fapi.twitter.com%2Foauth
%2Frequest_token&oauth_callback%3D[DEBUG_PAGE]%26oauth_consumer_key
%3D[MY_KEY]%26oauth_nonce%3D1b3b21dba5a3cbbc01e756bd7159ed3b
%26oauth_signature_method%3DHMAC-SHA1%26oauth_timestamp
%3D1276492389%26oauth_version%3D1.0
MAKING...MADE
SETTING UP SSL...SET UP
ADDING HEADERS...ADDED
ADDING POST...ADDED
SENDING...exception 'HttpInvalidParamException' with message 'Empty or
too short HTTP message: ''' in [FILE]:56 inner exception
'HttpRequestException' with message 'couldn't connect to server;
couldn't connect to host (https://api.twitter.com/oauth/
request_token/)' in [FILE]:48 Stack trace: #0 [FILE](56): HttpRequest-
>send() #1 {main}
SENT
REPLY: 1

So, this is an issue with connecting to the server, likely because the
server is expecting SSL. But, what am I supposed to be using SSL on?
The documentation at http://dev.twitter.com/auth just says "SSL is
recommended" and nothing more.

Any help would be much appreciated.


[twitter-dev] Re: Only getting up to page 5 on user_timeline

2010-06-14 Thread Raymond Yee
I've been having the same problem and wrote about it in an earlier
post:  
http://groups.google.com/group/twitter-development-talk/msg/0085b06ebecf48d8
I'm also still waiting for an answer to this question.

-Raymond

On Jun 12, 4:00 pm, invadermedia  wrote:
> I can't access past page 5 on any account when I'm checking for 200
> tweets at a time. Page 6 returns no tweets.
>
> I should be able to access up to 16 pages to get 3200 tweets. I have
> been able to retrieve that up until I tried again Friday. Is this a
> temporary limit?
>
> Here is an 
> example:http://api.twitter.com/1/statuses/user_timeline.xml?screen_name=KimKa...


[twitter-dev] Re: Using stored OAuth tokens in Anywhere

2010-06-14 Thread Karthik
Just did. Thanks

http://code.google.com/p/twitter-api/issues/detail?id=1694


[twitter-dev] Re: Using stored OAuth tokens in Anywhere

2010-06-14 Thread Nik Fletcher
Hi,

I don't think there is currently a way to do this - best thing would
be to file a ticket requesting this here:

http://code.google.com/p/twitter-api/issues/list

Cheers,

-N

On Jun 13, 7:48 pm, Karthik  wrote:
> Let's assume, we already have tokens of users, who logged into site
> via normal OAuth process. Now, if we integrate Anywhere in our site
> frontend, users are required to do a separate OAuth login for
> following people via Anywhere hover cards. Is there a way to suppress
> the second OAuth login, as we already have their tokens with us?