On Wed, 2009-08-19 at 09:20 -0700, Leah Culver wrote: > Hi Rodney, > > It's the service provider that generates the oauth_verfier after > authorizing the user. The service provider should be storing this > value to compare to later. This means that the authorize_request_token > method should not accept the oauth_verifier parameter since the > verifier has not been created yet. > > See section 6.2.2: http://oauth.net/core/1.0a#auth_step2
Except OAuthToken.set_verifier defaults the verifier argument to None, and generates a value itself. So, rather, this value does indeed need to be passed in to the OAuthDataStore.authorize_request_token method. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
