Hello, I am trying to setup oauth for my companies internal websites (I'm still very new to the whole process). I am able to request a token, authorize the token, but when I return to my call back URL and try to use the access token call it fails with a 400 Bad Request. I've also noticed Google's documentation says that oauth_verifier should be passed back along with oauth_token. This is not happening and I'm only getting oauth_token from the authorize call to log into Google and verify what will be used.
Information is as follows using a GET (should this be a POST?): URL: - https://www.google.com/accounts/OAuthGetAccessToken - ?oauth_consumer_key=anonymous - &oauth_token= url oauth_token passed in from Google's redirect - &oauth_signature_method=HMAC-SHA1 - &oauth_signature= same signature created in the beginning of this process - &oauth_timestamp= formatted now(), same as other token calls - &oauth_nonce= same creation as other token calls - &oauth_version=1.0a (tried 1.0 and still got the same problems) Please help me shed some light on this. It's been driving me crazy for the past few days trying to solve this. I am using "anonymous" for the key and secret for local development before pushing to a production site and using Google's generated key and secret using the Manage Domain feature in Google Business Apps. Thanks so much, Derek -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
