This would completely eliminate CSRF as an attack vector, too. CSRF simply wouldn't exist because requests initiated by other sites would never carry auth cookies with them.
-
-
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.