“
If OAuth is so great, why can’t Ushahidi support it? We would love to support OAuth, but at this time there isn’t a secure, convenient way to implement it in open source software. The reason being is every application that wants to connect to individual user accounts on Twitter must be registered and have a secret key hidden somewhere in the code. This is a problem for Ushahidi for two reasons, every deployment of Ushahidi is essentially its own application and would require registration for each one. Also, OAuth requires that applications have a secret key (like a password) that can’t be shared with anyone else. This key would have to be stored in the open sourced code (meaning anyone could take it and perform acts of evil).
Twitter’s OAuthcalypse and Ushahidi – The Ushahidi Blog
One of the better, easy-to-remember explanations I’ve read.
