String token = response.getFirst(OAuthParameters.TOKEN); parameters.token(token); secrets.tokenSecret(response.getFirst(OAuthParameters.TOKEN_SECRET)); state = State.REQUEST_TOKEN; parameters.verifier(handler.authorize(getAuthorizationUri())); if (state == State.UNMANAGED) { parameters.token(null); secrets.tokenSecret(null); secrets.tokenSecret(secret); handler.authorized(parameters.getToken(), secrets.getTokenSecret()); state = State.MANAGED; if (state == State.UNMANAGED) { parameters.token(null); secrets.tokenSecret(null); state = State.MANAGED; request.getHeaders().remove("Authorization"); parameters.token(null); secrets.tokenSecret(null); return handle(request);