topic Twitter API 1.1 OAuth&nbsp; for geolocated tweets in ArcGIS JavaScript Maps SDK Questions https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/twitter-api-1-1-oauth-nbsp-for-geolocated-tweets/m-p/415698#M38261 <HTML><HEAD></HEAD><BODY><SPAN>Hi guys,</SPAN><BR /><SPAN>I am customizing a story map (MapTour Template ) adding a functionality to search geolocated Tweets from the public stream, but new Twitter API require authentication.</SPAN><BR /><SPAN>I created an account and registered my app to obtain keys and tokens but I always get error 403.</SPAN><BR /><BR /><SPAN>Here is my code for auth</SPAN><BR /><BR /><PRE class="plain" name="code"> function oAuth(kwArgs) { &nbsp;&nbsp; var CONSUMER_KEY = "xxxxxxxxxxx"; var CONSUMER_SECRET = "xxxxxxxxxx"; var token = "xxxxxxxxxx"; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var tokenSecret = "xxxxxxxxxx"; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var access = { &nbsp;&nbsp;&nbsp;&nbsp; consumer: { &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; key: CONSUMER_KEY, &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; secret: CONSUMER_SECRET &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }, &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; user: { &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; key: token, &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; secret: tokenSecret &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }, &nbsp;&nbsp;&nbsp;&nbsp; sig_method: "HMAC-SHA1" &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }; kwArgs.headers= { &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 'Content-Type': 'application/x-www-form-urlencoded', &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; // our request will be made with the HTTP GET verb &nbsp; return OAuth.sign("GET", kwArgs, access); &nbsp;&nbsp; } </PRE><DIV style="display:none;"> </DIV><BR /><BR /><SPAN>and here is the code where I request tweets</SPAN><BR /><PRE class="plain" name="code"> function searchTwitter() { var query = dojo.byId("twitter_input").value; var geocode = "42.37355,12.88290,1000km"; &nbsp;&nbsp; try { &nbsp; var results = esri.request(oAuth({ &nbsp;&nbsp; dataType : 'jsonp', &nbsp;&nbsp; url : "http://api.twitter.com/1.1/search/tweets.json", &nbsp;&nbsp; content : { &nbsp;&nbsp;&nbsp; q : query, &nbsp;&nbsp;&nbsp; geocode : geocode, &nbsp;&nbsp;&nbsp; count : "100", &nbsp;&nbsp;&nbsp; include_entities : "false", &nbsp;&nbsp;&nbsp; result_type : "recent", &nbsp;&nbsp; }, &nbsp;&nbsp; callbackParamName : "callback", &nbsp;&nbsp; &nbsp; })); &nbsp; results.then(addTweets); &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; } catch (e) { &nbsp; console.log(e.toString()); } }; </PRE><DIV style="display:none;"> </DIV><BR /><BR /><SPAN>Somebody help, please!</SPAN></BODY></HTML> Wed, 26 Feb 2014 09:00:04 GMT NicoleDe_La_Feld 2014-02-26T09:00:04Z Twitter API 1.1 OAuth  for geolocated tweets https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/twitter-api-1-1-oauth-nbsp-for-geolocated-tweets/m-p/415698#M38261 <HTML><HEAD></HEAD><BODY><SPAN>Hi guys,</SPAN><BR /><SPAN>I am customizing a story map (MapTour Template ) adding a functionality to search geolocated Tweets from the public stream, but new Twitter API require authentication.</SPAN><BR /><SPAN>I created an account and registered my app to obtain keys and tokens but I always get error 403.</SPAN><BR /><BR /><SPAN>Here is my code for auth</SPAN><BR /><BR /><PRE class="plain" name="code"> function oAuth(kwArgs) { &nbsp;&nbsp; var CONSUMER_KEY = "xxxxxxxxxxx"; var CONSUMER_SECRET = "xxxxxxxxxx"; var token = "xxxxxxxxxx"; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var tokenSecret = "xxxxxxxxxx"; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var access = { &nbsp;&nbsp;&nbsp;&nbsp; consumer: { &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; key: CONSUMER_KEY, &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; secret: CONSUMER_SECRET &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }, &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; user: { &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; key: token, &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; secret: tokenSecret &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }, &nbsp;&nbsp;&nbsp;&nbsp; sig_method: "HMAC-SHA1" &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }; kwArgs.headers= { &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 'Content-Type': 'application/x-www-form-urlencoded', &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; // our request will be made with the HTTP GET verb &nbsp; return OAuth.sign("GET", kwArgs, access); &nbsp;&nbsp; } </PRE><DIV style="display:none;"> </DIV><BR /><BR /><SPAN>and here is the code where I request tweets</SPAN><BR /><PRE class="plain" name="code"> function searchTwitter() { var query = dojo.byId("twitter_input").value; var geocode = "42.37355,12.88290,1000km"; &nbsp;&nbsp; try { &nbsp; var results = esri.request(oAuth({ &nbsp;&nbsp; dataType : 'jsonp', &nbsp;&nbsp; url : "http://api.twitter.com/1.1/search/tweets.json", &nbsp;&nbsp; content : { &nbsp;&nbsp;&nbsp; q : query, &nbsp;&nbsp;&nbsp; geocode : geocode, &nbsp;&nbsp;&nbsp; count : "100", &nbsp;&nbsp;&nbsp; include_entities : "false", &nbsp;&nbsp;&nbsp; result_type : "recent", &nbsp;&nbsp; }, &nbsp;&nbsp; callbackParamName : "callback", &nbsp;&nbsp; &nbsp; })); &nbsp; results.then(addTweets); &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; } catch (e) { &nbsp; console.log(e.toString()); } }; </PRE><DIV style="display:none;"> </DIV><BR /><BR /><SPAN>Somebody help, please!</SPAN></BODY></HTML> Wed, 26 Feb 2014 09:00:04 GMT https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/twitter-api-1-1-oauth-nbsp-for-geolocated-tweets/m-p/415698#M38261 NicoleDe_La_Feld 2014-02-26T09:00:04Z Re: Twitter API 1.1 OAuth for geolocated tweets https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/twitter-api-1-1-oauth-nbsp-for-geolocated-tweets/m-p/415699#M38262 <HTML><HEAD></HEAD><BODY><SPAN>Did you verify that the oAuth headers are being sent in the request?</SPAN><BR /><BR /><SPAN>I wouldn't put the keys in JavaScript since they could easily be discovered. You should put them on a server side script like PHP so they are not exposed.</SPAN></BODY></HTML> Fri, 28 Feb 2014 02:58:24 GMT https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/twitter-api-1-1-oauth-nbsp-for-geolocated-tweets/m-p/415699#M38262 MattDriscoll 2014-02-28T02:58:24Z