(adsbygoogle = window.adsbygoogle || []).push({}); I brought this up with Outsider yesterday and I wanted to see if anyone would want to use this. Basically my original idea was to allow for users to link their Facebook and/or Twitter to their NGU account and then you'd be able to choose some options like "Post my new threads on Facebook" or "Post my thanked threads on Facebook", etc. I was able to implement the Facebook API and setup OAuth on vBulletin, but while looking at how to post status programmatically to Facebook, I realized that not only is Facebook really strict about automated posts, but they also require your app to be manually reviewed by them before you can even use it. Pretty stupid that I can't even test it first but either way, I doubt they would allow it.

That leaves me with Twitter. They're pretty flexible with automated posts so it shouldn't be a problem. Plus I feel like more people on here would rather have stuff shared to Twitter over Facebook if they chose to enable the sharing at all. I wanted to ask this publicly because it might be weird only having one option for sharing posts. Again, the gist of the plugin would be linking your Twitter account to NGU via OAuth (e.g. it won't require you entering your Twitter info and we won't have to store it) and then you'll have some options regarding what kind of stuff will get automatically shared to your Twitter account (like the aforementioned ones for new threads, thanking and maybe even posts). You'd be able to unlink your Twitter or just disable any of those options at any time. The goal is to just hopefully expand and promote content on here outside of the site itself.

Read my post again or at least do some research as to what OAuth is before sprouting nonsense. The whole point of OAuth is to prevent this exact thing you're talking about from happening. Generating a 60 day long-lived random token for your account is far more safer than actually storing your social media details on here. That is the only thing that gets stored too. I'm not saving anything related to your Twitter because I can just pull that info using the tokens (like username, screen name, public info like that).

spouting nonsense is a favorite pastime of mine, the way kam worded it made it sound like that steam stuff where u log into steam through that and when they get hacked so does your steam if you lack 2 step verification

I only say that because you could get Instagrams jacked via users tokens from apps such as like4like etc.

Twitter requires you to setup an app, and then you need to authenticate for each app by manually approving it. I'm pretty sure the token will only work for that specific app so it's not like someone can grab the tokens from the db and just use them to post shit to your Twitter account. They would need to grab the app details and then setup something to use that to send statuses. Lots of work when I'm able to just delete the app from Twitter and make it obsolete in a matter of seconds.

I don't mind you trying to make sure I'm doing it correctly. But I do value security and privacy over everything and would never ask for your password for Twitter or even NGU for that matter. Never would I try to store your password for another site in the database; that's just preposterous. I also wouldn't bother if their OAuth implementation was broken or vulnerable; that's too much responsibility to fall back on us if we did it incorrectly.