rave-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Matt Franklin <m.ben.frank...@gmail.com>
Subject Re: DefaultOAuthStore Question
Date Mon, 17 Jun 2013 18:13:59 GMT
On Mon, Jun 17, 2013 at 10:11 AM, Venkat (NEU) <neumba@gmail.com> wrote:

> Hi
> I am working on a gadget that uses OAuth. I am having trouble with the
> basestring. Debugging through the code I was able to locate the place where
> the issue might be. The method loadDefaultKey() in the DefaultOAuthStore
> store is instantiating BasicOAuthStoreConsumerKeyAndSecret() which calls
> the constructor which sets the oauthBodyHash to "true" always.

If I remember correctly, the OAuth 1.0a spec is slightly contradictory on
this subject.  In one part it says the body is to be included and in
another it is omitted in the example.  With this being the case, Shindig
defaults to hashing the body with the rest of the parameters.

In the end, I would support adding an additional configuration item to the
rave shindig properties that sets this boolean.

> Is this intentional? What if there was no body that is being passed in and
> all the params were in the request? is it necessary to calculate the body
> hash in this case.
> Thanks
> Venkat

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message