Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

That seems a difficult route given that the user had to explicitly give twitter posting access permission to the app in question...


He had to give the app access to his Twitter account. That doesn't mean he explicitly gave it permission to post to his Twitter account on his behalf.


No, that's exactly what that particular permission is (from a technical standpoint). What's at issue here is that the tweet the software generated wasn't exactly an authorized use of the account.


What's at issue here is that the tweet the software generated wasn't exactly an authorized use of the account.

Which means that, regardless of the technical point that "access to the Twitter account" gives the app the ability to post, the user did not give the app permission to post.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: