The Joomla! Extensions Directory ™


byxverges, July 27, 2011
1 of 1 people found this review helpful
Authentication Twitter
While the extension is very convenient, it relies on a practice that should be avoided: asking for the password from another site.

As a user, you should only provide your facebook credentials to facebook, or your twitter credentials to twitter. This extension encourages users to submit their twitter credentials to the site where the extension is installed. The extension handles them properly and sends them to twitter using https... but the user cannot know that.

Note please that I'm not saying that this is a malicious extension: it is not. I'm only saying that, as a user, you shouldn't be using any site that uses this mechanism because your password can be stolen.