Created
February 17, 2011 15:05
-
-
Save netshade/831885 to your computer and use it in GitHub Desktop.
Twitter Authorize-App "Don't Have a Twitter account" misdirection when using Mobile Safari
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| If you attempt to authorize an app to access your Twitter account using a Mobile Safari user-agent and arrive at the "Allow" / "Deny" screen while not currently logged in at Twitter, you are presented with a link that says "Don't have a Twitter account? Sign up Now!" . This link forwards you to: | |
| http://api.twitter.com/account/new?oauth_token=<the-oauth-token-for-the-session> | |
| which subsequently forwards you to: | |
| http://mobile.twitter.com/account/new | |
| which then forwards you to: | |
| http://mobile.twitter.com/account | |
| which finally forwards you to: | |
| http://mobile.twitter.com/suspended.html | |
| If you click on the equivalent link when not sending a Mobile Safari user-agent (in my case, Safari 5.01) , you successfully arrive at a sign up page: | |
| https://api.twitter.com/account/new?oauth_token=<the session oauth token> | |
| In this case I'd presume that the api.twitter.com service is incorrectly forwarding a non-api request ( for the user sign up page ) for a mobile browser over to the mobile domain, but in this particular case should be presenting the user with a signup form hosted from api.twitter.com. I am only armchair debugging tho. | |
| Incidentally, the sign-in on support.twitter.com is also not working. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Legit. I'll file a ticket.