... is a Barebones Lua Twitter module (OAuth-enabled) with minimal dependencies.
It is intended for thin/embedded platforms like OpenWRT routers.
Here's an example program:
local bblt = require("bbl-twitter")
local config = {
consumer_key = 'xxx',
consumer_secret = 'xxx',
}
local c = bblt.client(config.consumer_key, config.consumer_secret)
-- The following function will prompt on the console to visit a URL and
-- enter a PIN for out-of-band authentication
c:out_of_band_cli(c)
c:update_status("Look ma, I just authenticated my Lua twitter app!")
print(string.format("Authorized by user '%s'. My secrets are token_key '%s' token_secret '%s'",
c.screen_name, c.token_key, c.token_secret))- Lua (5.1 assumed)
- luasocket
- luasec
- shell w/ echo support (ie nearly any shell)
- an openssl executable binary.
- On OpenWRT, packages required are openssl-util, lua, luasocket, luasec
- On Debian/Ubuntu, packages required are openssl, lua, liblua5.1-socket2 lua-sec
- Other OSes will be similar. :)
MIT Licensed as per the LICENSE file.
Originally by Angus Gratton (@projectgus), improved and now maintained by @xopxe.
Significant contributions by:
- Matthijs Kooijman @matthijskooijman
- (Your Name Here!)
To be able to use any twitter feature, you'll have to get a consumer key
and consumer secret at https://dev.twitter.com and pass to to the client
function.
To actually make resource requests (e.g., post tweets), you need to have an access token. You can get an access token in three ways:
-
Get a single access token from
https://dev.twitter.com. This only works if you need access just your own account, no others. Seehttps://dev.twitter.com/pages/oauth_single_tokenfor details. -
Use the out-of-band (PIN) OAuth flow. This means you present the user with a Twitter url he should visit. After clicking the authorize button at that url, the user is presented with a verifier (PIN code) that is entered back into your application. You can then "trade" the verifier for an access token using the OAuth API.
-
Use the full (callback) OAuth flow, which is intended for web applications. You redirect the user to a Twitter url. After clicking the authorize button at that url, the user is redirected back to your webapplication with a verifier in the url. You can again "trade" the verifier for an access token using the OAuth API.
If you obtain an access token using method 2. or 3., you can save it
into persistent (secure) storage for later use (so you don't have to run
the authorization steps again). The access token can be obtained from
the c.token_key and c.token_secret values and can later be
passed into the client() function to reuse it.
This assumes you already have an access token, obtained by any method described above.
local bblt = require("bbl-twitter")
local c = bblt.client(config.consumer_key, config.consumer_secret, config.token_key, config.token_secret)
c:update_status("Look ma, tweets from Lua!")When a library call fails, it will return nil followed by an error message, so
the returns of the various functions can be handled using the assert
function. This example shows how to handle errors in client() and update_status(), but
it applies to all other functions as well.
local bblt = require("bbl-twitter")
local c = assert(bblt.client(config.consumer_key, config.consumer_secret, config.token_key, config.token_secret))
local r, e = c:update_status("Look ma, this tweet might not make it!")
if (not r) then
if string.match(e, "duplicate") then
print("Best guess is this tweet was rejected as a duplicate. Did you already tweet this?")
else
print("Error sending tweet: " .. e)
end
endThis example uses the out_of_band_cli function, which handles prompting
the user with the authorization url and prompting for the pin code.
local bblt = require("bbl-twitter")
local config = {
consumer_key = 'xxx',
consumer_secret = 'xxx',
}
local c = bblt.client(config.consumer_key, config.consumer_secret)
-- The following function will prompt on the console to visit a URL and
-- enter a PIN for out-of-band authentication
c:out_of_band_cli()
c:update_status("Look ma, I just authenticated my Lua twitter app!")
print(string.format("Authorized by user '%s'. My secrets are token_key '%s' token_secret '%s'",
c.screen_name, c.token_key, c.token_secret))This example shows the details of doing out-of-band authorization (you'll need to fill in the TODOs with your favorite I/O method to make it work, of course).
local bblt = require("bbl-twitter")
local c = bblt.client(config.consumer_key, config.consumer_secret)
-- First get a request token and declare we need to do out-of-band
-- authorization
c:get_request_token('oob')
local url = c:get_authorize_url()
-- TODO: Show the url to the user
-- TODO: obtain pin from the user
local pin = ...
-- Now, trade the pin for an access token
c:get_access_token(pin)
c:update_status("Look ma, I just authenticated my Lua twitter app!")
print(string.format("Authorized by user '%s'. My secrets are token_key '%s' token_secret '%s'",
c.screen_name, c.token_key, c.token_secret))This example shows how to use this stuff in a webapplication using a callback. Again, fill in the TODOs for your webapp.
In the first request, you do:
local bblt = require("bbl-twitter")
local c = bblt.client(config.consumer_key, config.consumer_secret)
-- First get a request token and declare our callback url
c:get_request_token('http://www.example.org/mywebapp')
-- TODO: Store c.req_token and c.req_secret somewhere
local url = c:get_authorize_url()
-- TODO: Redirect user to urlAfter authorization is complete, the user will be redirected to
http://www.example.org/mywebapp?oauth_token=...&oauth_verifier=...
This request should be handled as follows:
local bblt = require("bbl-twitter")
local c = bblt.client(config.consumer_key, config.consumer_secret)
-- TODO: get oauth_verifier from the url
local verifier = ...
-- TODO: get oauth_token from the url
c.req_token = ...
-- TODO: compare req_token with stored req_token
-- TODO: get stored req_secret
c.req_secret = ...
-- Now, trade the verifier for an access token
c:get_access_token(verifier)
c:update_status("Look ma, I just authenticated my Lua twitter app!")
print(string.format("Authorized by user '%s'. My secrets are token_key '%s' token_secret '%s'",
c.screen_name, c.token_key, c.token_secret))The signed_request function can be used to perform other requests to the
Twitter API that require authorization. This example shows how you would
implement posting a new tweet if the update_status function would not
exist.
This assumes you already have an access token, obtained by any method described above.
local JSON = require("JSON")
local bblt = require("bbl-twitter")
local c = bblt.client(config.consumer_key, config.consumer_secret, config.token_key, config.token_secret)
local body = JSON:encode({text = "Hello world!"})
c:signed_request("/2/tweets", {
["Content-Type"] = "application/json",
["Content-Length"] = string.len(body),
}, 'POST', JSON:encode(body))local bblt = require("bbl-twitter")
bblt.twitter_config.openssl = "/opt/bin/openssl" -- if your openssl is not on the PATH
bblt.twitter_config.consumer_key = "myconsumerkey"
bblt.twitter_config.consumer_secret = "myconsumersecret"
bblt.twitter_config.token_key = "myaccesstoken"
bblt.twitter_config.token_secret = "myaccesssecret"
bblt.client():update_status("Look ma, global settings!")Jeffrey Friedl has actually coded a pure Lua Twitter module right down to SHA1 & HMAC-SHA1 implementations, which is quite impressive (if a bit absurd!) Although as-written it is tied to the Adobe Lightroom plugin environment. http://regex.info/blog/lua/twitter
bbl-twitter was inspired by "shtter" shell twitter client for OpenWRT, by "lostman" http://lostman-worlds-end.blogspot.com/2010/05/openwrt_22.html
- Add more Twitter API features (parsing JSON/XML without additional dependencies is hard.)