When you click
Sign In with Twitter on the Private Twitter Feed app, you are participating in a very standard, secure, and commonly used way of authorization. The technical term is OAuth2.
OAuth2 makes it easy for users to log into your app, not have to remember a password for every website, and trust your security. OAuth2 dominates the industry as there is no other security protocol that comes close to the adoption of OAuth2.
If you’re wondering what OAuth2 is, it’s the protocol that enables anyone to log in with their Facebook account. It powers the “Log in with Facebook” button in apps and on websites everywhere. – Zack Grossbart, Smashing Magazine
How We Use Oauth2 with Twitter
For example, you can tell Facebook that it’s OK for ESPN.com to access your profile or post updates to your timeline without giving ESPN your Facebook password.
OAuth doesn’t share password data but instead uses authorization tokens to prove an identity between consumers and service providers. This allows you to approve one application interacting with another on your behalf without giving away your password.
When you sign up for the Private Twitter Feed app, you go through this flow:
What you're doing here is granting our application secure access to your Twitter account. With this access, you are explicitly giving our application permission to grab public information - your handle and email - so that we can automate the process of following Wall St. Jesus on your behalf.
In the past, this was a manual process, and users suffered longer approval times. To make this experience better and faster for you, we've decided to automate as much of this process as possible.
Questions or suggestions?
Please reach out if you have any further questions or suggestions.