Skip to main content

How @ITweetBio Authenticates You


@ITweetBio lists Twitter bios and regularly tweets from the list. You can enlist your Twitter bio there. @ITweetBio wants to make it easy for you to enlist your bio without requiring you to register yourself with the service, or making you to authenticate the application. You are already known in Twitter by your handle. You can just give your Twitter handle like @BlindTalk, and @ITweetBio will use the handle to read your bio from Twitter and enlist it. However, anyone can give your Twitter handle to @ITweetBio acting like he is you. @ITweetBio wants to verify that you are the one who gives the handle, not anyone else.

I wrote a short article almost three years ago on Authentication by Mentioning using Twitter but I didn't give any sample code. I am going to give a sample code at the end of this article. I found it easy to authenticate someone using only his Twitter account. All he has to do is tweet a specific message from me and I will read his Twitter status that must match with the message. Obviously only he can do the tweet from his Twitter account. However, his Twitter time line must be made public so that I can read his status without using any credential. If he makes his time line private then I have to be his follower first, that he has to allow me reading the time line.

@ITweetBio assumes that your Twitter time line is public. You are required to tweet a bio from the list. Once you have tweeted, @ITweetBio will read your last Twitter status looking for the same bio. If they are matched then you are authenticated and your bio will be enlisted.

Imagine that your Twitter bio is already enlisted and at the same time someone else wants his bio also to be enlisted. The person will be asked to tweet probably your bio and he does it. Thus, your bio is also tweeted by someone else other then a potential tweet by @ITweetBio. Asking someone to tweet bio serves two purposesto authenticate and to get bios to be tweeted.


The Code

The following is the PHP code to read someone Twitter status given the handle:

function read_status($handle)
{
  $user = json_decode(
    file_get_contents(

  if (isset($user->status) && isset($user->status->text))
    return $user->status->text;

  return FALSE;
}

Note that you don't want to be querying Twitter only for the user status since the $user object contains many other information. The user bio is also returned with the same query.

Comments

Post a Comment

Popular posts from this blog

Setting Up PyScripter for Quantum GIS

PyScripter is a general purpose Python Integrated Development Environment (IDE). Quantum GIS (QGIS) is a desktop GIS application that can be extended with Python plugins. Both are open source softwares. We intend to use PyScripter as an IDE to build QGIS Python plugin. We are using PyScripter 2.4.1.0 and QGIS 1.6.0 in Windows. PyScripter does not come with Python. On the other hand, QGIS is built in with Python. Thus, we will setup up PyScripter to use the build in Python in QGIS. We assume both PyScripter and QGIS are already installed. Preparing PyScripter batch file We assume that QGIS is installed in C:\OSGeo4W\ folder and PyScripter is installed in C:\Program Files\PyScripter\ . 1. Copy qgis.bat in C:\OSGeo4W\ bin to pyscripter.bat 2. Edit pyscripter.bat to remove the last line that read something like this start "Quantum GIS" /B "%OSGEO4W_ROOT%"\apps\qgis\bin\qgis.exe %* and replace it with this in one line Start "PyScripter" /B "C:\Progr...
8 comments
Read more

Using React in Foundation for Sites

This post was the precursor to the Foundation-React Template . React and Foundation are two different web UI frameworks addressing different needs. They evolve differently. Both of them are powerful on their own accord. Fusing them together may create superpower. We will walk through the process of adding React into Foundation. We will start by installing both Foundation and React through command line interface (CLI). Then we will create a simple Todo web app. Along the way we will highlight the development process. But before all that, let us summarize React and Foundation. The details can be found at their respective websites. Both of them are well documented. React is a run-time UI rendering engine. It renders dynamic UI elements in its own fast virtual DOM, and only update necessary changes to the slow browser DOM. This behaves like a  double buffering DOM which makes any UI update feels fast. React wraps a UI rendering script in a component. A React component can ...
Post a Comment
Read more

Debugging PHP using Apache Error Log

PHP runs on the server side and behaves like a function that return a value against the given arguments. A remote client may call this function and expect a specified return value and nothing else. So how do we debug this function ? It must not return debugging messages since the client is never designed to handle them. We must never burden any client to handle debugging messages. If we run PHP through Apache server then we can use the error log to keep our debugging messages. It may not be the best way to do it. But we only want to talk about this approach now. Error Logs The Apache error log files generally can be found in the following directory: var/log/apache2 We issue the following command from within the directory to read the latest error messages: # tail error.log The tail command reads the last few lines from the error.log file and prints them on the terminal. If we need to read a specific number of lines from the end of the file then we can specify the -n opti...
Post a Comment
Read more