Loading Profile...
When are you implementing Oauth?
When are you implementing Oauth?
I’m sad
14
people have this question
I have this question, too!
Tell me when someone answers.
The more people who ask this question, the more it gets noticed.
The more people who ask this question, the more it gets noticed.
Create a customer community for your own organization
Plans starting at $19/month
-
Inappropriate?Hi Jeremy,
Twitter's OAuth implementation is still in private beta.
Once they've opened their OAuth methods to the public, we'll be able to start looking at this.
Great question. Thanks for using HootSuite. -
Inappropriate?Any update on this? I believe Twitter's OAuth is now public, and as the makers of 1Password, you can probably imagine why we really don't want to give out our Twitter account passwords. :)
I’m hopeful
-
Inappropriate?Hi David--
It's in our list! Right now we're working on some cool features that we think our users will love, but OAuth integration is something we'll be looking at in the near future.
Thanks for the feedback. -
Inappropriate?I worry that this is a dangerous approach. New features are always great and appreciated (I donated a little while ago, FWIW), but not at the expense of security. It may be commonplace for the masses to fork over their passwords to all sorts of great web services, but that doesn't make it right, and it is a dangerously insecure habit. I wish you luck on getting OAuth implemented soon.
I’m bummed
-
Inappropriate?Hi David,
Security is certainly important.
One thing to note is that Twitter's OAuth implementation is still in Beta. In fact, a few weeks ago, they shut it off without warning due to security issues: http://blog.twitter.com/2009/04/whats...
We'd love to implement OAuth soon, but we've seen early adopters hit by some outages, so we're biding our time a bit.
This is definitely important to us, though. Thanks for bringing it up. -
Inappropriate?Security is not optional - it should be one of your top priorities!
I was excited about trying your product but am definitely not giving you my password with all the security concerns around Twitter these days.
Sam
I’m disappointed
-
Inappropriate?Besides, why don't you use HTTPS in the registration process for now ?
Giving you my Twitter password through unencrypted POST request is not my idea of security.
I’m not signing up (till fixed)
-
Inappropriate?At this point I don't know whether I should even bother considering HootSuite anymore. The continued lack of OAuth support, or generally any kind of concern for user privacy or password protection, speaks volumes about the company's interests. It's a compelling product, but it sacrifices even the most basic security precautions in favor of flashy new features and gaining market share. Three cheers for social media.
-
Inappropriate?Hi David--
Thanks for the feedback.
We are working toward using oAuth for HootSuite. In fact, we've implemented oAuth authentication on ow.ly as a sort of "test run" for doing it on HootSuite. oAuth is definitely more stable these days, and it's definitely something we will be using.
However, there are a few major infrastructure changes we need to make to HootSuite before oAuth will work.
We're going to be changing the way that the multiple accounts / multiple editor structure works behind the scenes, which should allow us to use oAuth. (as well as providing a whole host of usability/flexibility improvements for our users). We're also thinking carefully about the best ways to roll out oAuth support so existing users with dozens of twitter accounts can authenticate via oAuth in an intuitive way.
This is definitely important to us, and we're working out the best ways to go about it. -
Inappropriate?Yes - please implement OAuth as soon as possible!!! Otherwise I might think about switching to another client.... Hootsuite simply is the best - no oher client can compete with HootSuite!!!!
EMPLOYEE
