Inspired By Twitter, Tumblr Embraces OAuth

Filed as News on July 14, 2010 8:10 pm

After dethroning Typepad for the bronze medal of bloghood, it looks as if Tumblr has finally decided to implement OAuth within its API (or application programming interface for you non-geeks) for third party clients.

For increased security and more resilient third-party apps, we’ve started early testing of OAuth support in the Tumblr API.

We’ve modeled our implementation after Twitter’s in many ways, supporting OAuth 1.0a with optional xAuth, upon request, where it makes sense such as mobile and native applications.

The existing authentication methods in the API are still supported for now, but we encourage developers to migrate to OAuth when possible. (Tumblr Staff Blog)

For those of you who do not speak geek, OAuth basically allows you to log into Tumblr via third party apps without giving the developer your password (which can help reduce the chances of having your account hacked).

Twitter has already forced most (if not all) developers to embrace OAuth in June, although ironically there are a few developers (mainly iPhone apps) who still require a person’s username and password to tweet from their respective device.

Unfortunately Tumblr’s OAuth is still in beta, which means that developers may avoid using OAuth option in order to avoid any unexpected problems (which could translate into a lost client for premium Tumblr applications).

Tumblr has not indicated when they will require developers to embrace OAuth or lose access to the Tumblrverse, although hopefully the company follows Twitter’s footsteps and makes OAuth a universal requirement (preferably sooner than later).

Tags:

This post was written by

You can visit the for a short bio, more posts, and other information about the author.


Submissions & Subscriptions

Submit the post to Reddit, StumbleUpon, Digg or Del.icio.us.

Did you like it? Then subscribe to our RSS feed!



  1. By zxsfu posted on July 20, 2010 at 2:37 pm
    Want an avatar? Get a gravatar! • You can link to this comment

    The existing authentication methods in the API are still supported for now, but we encourage developers to migrate to OAuth when possible

    Reply

    Your words are your own, so be nice and helpful if you can. If this is the first time you're posting a comment, it might go into moderation. Don't worry, it's not lost, so there's no need to repost it! We accept clean XHTML in comments, but don't overdo it please.

    Current day month ye@r *