Hi Andreas,
When you retrieve a request token (see step 1 in our OAuth guide) you can include an oauth_callback parameter. This specifies a URL controlled by you and to which the users is redirect after she has authorized your appplication. The redirect will include an oauth_verifier parameter, which you will use to get full access credentials (step 3 in our OAuth guide).
You may choose not to specify a oauth_callback or, more relevantly, your application may not have a URL to redirect back to (i.e. a desktop or a mobile app). In this case, the callback is designated out-of-band (or oauth_callback=oob) and there's not place to return an oauth_verifier. Instead the four-letter code is actually the verifier, which is designed to be copy-pasted back to your application -- which in turn with retrieve access tokens using the verifier.
So, two possible solutions to your issues:
- Either include oauth_callback=http://... in your request to http://api.visualplatform.net/oauth/request_token.
- Have a way for users to paste back the verified in your app.
Steffen
Request notifications
