You're not likely to find the requirement explicitly spelled out in
the OAuth specification, but Twitter, along with many other OAuth
providers, use the timestamp as an additional check point that the
request is timely. This is especially important in the token
negotiation steps where elements of
http://tools.ietf.org/html/draft-hammer-oauth-10#section-3.3
On Wed, May 26, 2010 at 05:55, Taylor Singletary
taylorsinglet...@twitter.com wrote:
You're not likely to find the requirement explicitly spelled out in
the OAuth specification, but Twitter, along with many other OAuth
providers,
Thanks. I did look through the archives before posting but did not
find anything. I will look harder next time. I still don't see where
in the OAuth specifications it says this comparison is necessary, but
I will continue to look around.
--ejw
Eric Woodward
Email: e...@nambu.com
On May 25,