On Wed, Apr 14, 2010 at 18:26, Raffi Krikorian <ra...@twitter.com> wrote: > yes, it could be a problem - however, there are known solutions to > obfuscating and keeping your consumer key secret. not perfect, but pretty > good. maybe we can start a discussion around this?
What's the known solution for an open-source Web-based application that I want to distribute to the world[1]? "Make people get their own key" is not an acceptable solution; neither is "proxy all requests through your own web site and add the secret there". [1]: http://github.com/genehack/app-status-skein john.