Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Do not prepend oauth_ to additional parameters for oauth_signature #373

Merged
merged 2 commits into from
Jun 6, 2016
Merged

Do not prepend oauth_ to additional parameters for oauth_signature #373

merged 2 commits into from
Jun 6, 2016

Conversation

jimhester
Copy link
Member

The flickr API for instance needs all query parameters to be included in
the signature. (https://www.flickr.com/services/api/auth.oauth.html#yui_3_11_0_1_1464787470505_317)

With this change I am able to get a 200 response with the following code (app secret redacted)

f <- oauth_app("r to flickr", "ed724990662ac2b8c236726a34226ea9", "<redacted>")

ep <- oauth_endpoint(
  request = "https://www.flickr.com/services/oauth/request_token",
  authorize = "https://www.flickr.com/services/oauth/authorize",
  access = "https://www.flickr.com/services/oauth/access_token"
)

tok <- oauth1.0_token(ep, f, cache = T)

signature <- oauth_signature("https://api.flickr.com/services/rest", app =
  tok$app, token = tok$credentials$oauth_token, token_secret =
  tok$credentials$oauth_token_secret,
  other_params = list(method = "flickr.test.login", format = "json", "nojsoncallback" = 1))

GET("https://api.flickr.com/services/rest", query = signature)

@jimhester jimhester force-pushed the bugfix/oauth_signature branch 2 times, most recently from ca6def7 to 0b39c49 Compare June 1, 2016 18:47
@jimhester
Do not prepend oauth_ to additional parameters for oauth_signature
5e49c92 
The flickr API for instance needs all query parameters to be included in
the signature
jimhester referenced this pull request Jun 1, 2016
@hadley
Make indexing more robusy
7261a52
hadley
hadley reviewed Jun 1, 2016
View reviewed changes
R/oauth-init.R
@@ -31,11 +31,11 @@ init_oauth1.0 <- function(endpoint, app, permission = NULL,
authorize_url <- modify_url(endpoint$authorize, query = list(
oauth_token = token,
permission = "read"))
verifier <- oauth_listener(authorize_url, is_interactive)[[1]]
verifier <- oauth_listener(authorize_url, is_interactive)$oauth_verifier
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the use of position was deliberate here

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah it was changed with 7261a52#commitcomment-17702567, unfortunatly subsetting by position breaks when authenticating with flickr at least. I don't know if they are not returning the proper response or if it needs to be reverted.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok I have updated it as suggested with da2bef0

@jimhester
Use oauth_verifier if it is returned, otherwise use first item
da2bef0 
Some APIs simply return the first item as the verifier token, others
return a named oauth_verifier (which may not be first) along with other
information.
@jimhester
Copy link
Member Author

Ok this was modified as discussed to check for oauth_verifier in the returned JSON and otherwise take the first item.

@hadley hadley merged commit dac3b49 into r-lib:master Jun 6, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jimhester @hadley