RSA-SHA1 was not supported from the beginning, simply because I didn't need it and it was more complicated to set up and test.
Since erlang-oauth supports it, it shouldn't be too difficult to turn on. You would need to allow a security certificate to be stored as credentials so that signatures can be verified. The latest erlang-oauth seems to require Erlang R14B for RSA-SHA1, so I guess this would also have to be taken into account. -- Jason Davies, http://www.jasondavies.com/
