Yes. This is also how Twitter's authentication works. Twitter say that client de... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		kalleboo on March 7, 2013 \| parent \| context \| favorite \| on: Dropbox Sync API Yes. This is also how Twitter's authentication works. Twitter say that client developers should protect the secret in the binary by reasonable means, but the key from Twitter's own iOS and Android apps have already been extracted. (on a side note, why haven't any client devs who ran into token limited tries using the official keys yet? will they be taken out of an app store?)

lloeki on March 7, 2013 [–]

> why haven't any client devs who ran into token limited tries using the official keys yet? will they be taken out of an app store?

Probably, just like AirFoil Speakers Touch has been kicked out for using some Apple private key extracted from the Airport firmware to act as an AirpLay receiver.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact