Use password-less, token based OAuth for Twitter integration

[ghost]

Pomodoro.app should use either OAuth with redirect or the OAuth + PIN mechanism to tweet on behalf of a user. I should not have to entrust Pomodoro.app to my password.

This would implicitly fix #232 since with a token you don't need to re-login.

[ugol]

Hi Tim, I am using the xAuth variant because OAuth doesn't suit very well non-webapps. I agree with you that a full OAuth would be better, but in practice that would mean opening a web view, storing the token, etc.

[toolbear]

I think you can do full OAuth if you register a pomodoro scheme in OS X and have the Twitter OAuth handshake redirect to something like pomodoro://auth?token=…. For less effort you can go the PIN+OAuth route. In either case, won't this work by opening a URL using the system browser instead of embedding a web view in Pomodoro.app?

I suppose this is where you respond, "Sure, send me a pull request". :)