The problems of Twitter with their OAuth implementation have made the headlines, and a full analysis can be found on Ars Technica. The (very) basic idea of the first issue highlighted in this article is as follows: Twitter provides “secret keys” (more like API keys) to developers. When a key is compromised, it is revoked, […]