Hello, Just thought that I'd point out something in google's oauth documentation:
http://code.google.com/apis/accounts/docs/OAuth_ref.html#SigningOAuth In the documentation, it seems to say that when signing a request with HMAC-SHA1, the key is the oauth consumer secret. There should really be mention of the fact that the real encryption key is a string of the format '{0}&{1}', where 0=oauth consumer secret (urlencoded), and 1=token secret(urlencoded). This was the documentation that I had gone off originally, and it would have saved me some headaches to have that in there. Cheers Alex -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
