Get email from twitter OAuth2

Question

I am using Socialite in Laravel to login with Twitter.

I know that not all twitter users have an email attached to their account, but for my application the user does need an email address. I am fine to block logins from people who do not have an email attached, but at the moment every user does have the email field set to null.

I am using this function to redirect to twitter:

return Socialite::driver($provider)->redirect();

I have already tried using scopes like this:

return Socialite::driver($provider)->scopes(['email'])->redirect();

But twitter is the only provider that does not allow scopes.

The callback returns the email address for other providers like facebook and google, but there seems to be something that I am missing while using twitter.

For OAuth1 there was a setting somewhere to enable the option to return the email field aswell, but since twitter accepts OAuth2 I can not find this setting anymore in the Twitter developers panel.

Any help would my appreciated since most of the information about this topic is outdated.

Answer 1

Currently, OAuth2 is always returning a null email, I switched to OAuth1 but if you did, you may face a 'Request Token Not Found' Error

Have a look at this PR

Answer 2

The solution was found in the twitter developers dashboard.

First of all go to the settings of your app.

Then you have to fill in a link to your privacy policy & terms page.

After that also enable OAuth 1.0 en then an option pops up to also receive the email address from the user that is trying to log in.

Answer 3

Twitter's new Oauth 2.0 user authentication does not currently (at the time of writing this answer) provide access to the user's email address, and will require an additional scope to be added. This is on the Twitter API roadmap and is a known feature request.

You can still use OAuth 1.0A and set the option to request the user's email address.