Getting to grips with the Ruby OAuth gem and the Twitter API

Wednesday, 29th February 2012 - 0 Comments

Hey - good to see you! If you are new here, you can subscribe to the RSS feed for updates on this topic.

I'm a relative newcomer to the Ruby/Rails world. I'd not had the need to add Twitter to a site before, but I had an interesting scenario yesterday trying to Tweet from one of my project sites via Twitter/OAuth. Here's how I did it.

I spent a good deal of my afternoon yesterday ploughing through the Twitter API documentation as well as figuring out OAuth. Hopefully this brief tutorial will stop you having to pull your hair out if you want to start allowing users to Tweet from your web page.

The first thing you need to do is register your app with the Twitter API at https://dev.twitter.com, making sure to select read and write access when creating an app. I missed this at first, having selected read only. The important parts here are to make sure that your callback URL is correct. It needs to be of the form:

http://yourdomain.com/auth/twitter/callback

For local testing you may need to replace yourdomain.com with 127.0.0.1:3000 (for local Rails apps started on the Rails server with the default port). Make sure you do NOT use localhost:3000, it does not work.

You will need to install the OAuth Ruby gem in your project/gemset:

sudo gem install oauth

Note: Better installation instructions can be found here.

Once that is installed, you need to go through the token preparation process in your Ruby code. This means obtaining the Consumer token and secret keys from the Twitter Developers site for your application, then adding them into the following code:

require 'oauth/consumer'
 
# Exchange your oauth_token and oauth_token_secret for an AccessToken instance.
def prepare_access_token(oauth_token, oauth_token_secret)
  consumer = OAuth::Consumer.new("APIKey", "APISecret",
    { :site => "https://api.twitter.com",
      :request_token_path => '/oauth/request_token',
      :access_token_path => '/oauth/access_token',
      :authorize_path => '/oauth/authorize',
      :scheme => :header
    })
 
  # now create the access token object from passed values
  token_hash = { :oauth_token => oauth_token,
                 :oauth_token_secret => oauth_token_secret }
  access_token = OAuth::AccessToken.from_hash(consumer, token_hash )
  return access_token
end

The above function will need to be included into an app/helper or similar include file if you are using a web framework such as Rails. The parameters to the function are the OAuth tokens given to you by the user when authenticated to your service (via Omniauth or some other mechanism). The "APIKey" and "APISecret" are your application's consumer keys which you obtain from the Twitter Dev site.

In order to actually Tweet as an authenticated user who is signed into your service you will need to prepare a token and then perform a request again the Twitter API. Here is the correct request to use to post a Tweet, via an account of an authenticated user:

update_hash = {'status' => 'Hey look I can tweet via OAuth!'}
access_token = prepare_access_token(token, secret)
response = access_token.post('https://api.twitter.com/1/statuses/update.json',
    update_hash, { 'Accept' => 'application/xml' })

Where the token and secret are, as stated above, the user's Twitter OAuth keys that you will obtain on sign in to your service.

At this point, you can start experimenting with additional parameters to your update_hash, such as entities (images, links etc) and in reply to links. The following provide some good docs/tutorials on the subject:

0 comments ... read them below or add one

All comments will need to be manually verified before they appear on the site as I receive a huge number of spam comments, some of which slip through the automated net! Please be patient while I moderate it.

Leave a Comment
Your name is required.
This will not be published.
This is not required.
Write your comment here.