I thought they *need not* be the same - because a service provider could conceivably encode some opaque values in the tokens and those might be different in the unauthorized & authorized requestTokens. I am actually planning on these two being different. Does the spec specify that these two tokens should be the same ?
Cheers <k/> |-----Original Message----- |From: [email protected] [mailto:[email protected]] On Behalf |Of John Kristian |Sent: Saturday, January 31, 2009 2:37 PM |To: OAuth |Subject: [oauth] Re: Problem accessing OAuthAccessToken | | |Yes, the request token is the same, regardless of whether it's |authorized. | |For Javascript, I recommend |http://oauth.googlecode.com/svn/code/javascript/oauth.js |You can call OAuth.SignatureMethod.sign to compute oauth_signature, or |OAuth.completeRequest to set other parameters in addition to |oauth_signature. For example see |http://oauth.googlecode.com/svn/code/javascript/example/AJAX.html | |On Jan 31, 10:53 am, Razak <[email protected]> wrote: |> Are both unauthorized requestToken & authorized requestToken same? |> |> I am trying with Javascript using Ajax. Can you provide coding |> on the computation of oauth_signature using oauth_token_secret? | | --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
