<p>But a lot of that involves either changing the oauth flows (mandated by the specs) or changing things which are part of the oauth gems and hence outside our control.</p>
<p>So what you're saying is that the flow would be that you get a new request token, then when you go to <code>/authorize</code> it would somehow find and return the existing access token rather than creating a new one. The problem with that is that <code>/authorize</code> is implemented by the oauth-plugin gem, not by us.</p>

<p style="font-size:small;-webkit-text-size-adjust:none;color:#666;">—<br />You are receiving this because you are subscribed to this thread.<br />Reply to this email directly, <a href="https://github.com/openstreetmap/openstreetmap-website/issues/1455#issuecomment-281714821">view it on GitHub</a>, or <a href="https://github.com/notifications/unsubscribe-auth/ABWnLWkyebCEsYvjhAPqf4OwROG3rb-6ks5rfF1UgaJpZM4MIYe0">mute the thread</a>.<img alt="" height="1" src="https://github.com/notifications/beacon/ABWnLTPd1U1gImn9rsRqdbM9D3Mgp1HTks5rfF1UgaJpZM4MIYe0.gif" width="1" /></p>
<div itemscope itemtype="http://schema.org/EmailMessage">
<div itemprop="action" itemscope itemtype="http://schema.org/ViewAction">
  <link itemprop="url" href="https://github.com/openstreetmap/openstreetmap-website/issues/1455#issuecomment-281714821"></link>
  <meta itemprop="name" content="View Issue"></meta>
</div>
<meta itemprop="description" content="View this Issue on GitHub"></meta>
</div>

<script type="application/json" data-scope="inboxmarkup">{"api_version":"1.0","publisher":{"api_key":"05dde50f1d1a384dd78767c55493e4bb","name":"GitHub"},"entity":{"external_key":"github/openstreetmap/openstreetmap-website","title":"openstreetmap/openstreetmap-website","subtitle":"GitHub repository","main_image_url":"https://cloud.githubusercontent.com/assets/143418/17495839/a5054eac-5d88-11e6-95fc-7290892c7bb5.png","avatar_image_url":"https://cloud.githubusercontent.com/assets/143418/15842166/7c72db34-2c0b-11e6-9aed-b52498112777.png","action":{"name":"Open in GitHub","url":"https://github.com/openstreetmap/openstreetmap-website"}},"updates":{"snippets":[{"icon":"PERSON","message":"@tomhughes in #1455: But a lot of that involves either changing the oauth flows (mandated by the specs) or changing things which are part of the oauth gems and hence outside our control.\r\n\r\nSo what you're saying is that the flow would be that you get a new request token, then when you go to `/authorize` it would somehow find and return the existing access token rather than creating a new one. The problem with that is that `/authorize` is implemented by the oauth-plugin gem, not by us."}],"action":{"name":"View Issue","url":"https://github.com/openstreetmap/openstreetmap-website/issues/1455#issuecomment-281714821"}}}</script>