-
When doing the Twitter oauth dance, is there a way to require that the user reauthenticates with Twitter? (enters password + multifactor if applicable) If not, are all apps that allow "Log In With Twitter" vulnerable to account privilege escalation or session fixation attacks?On twitter.com
♻️ 2 Retweets
❤️ 2 Favorites
Mood -2 🙁