Hi Prashant: Thanks for your reply. But seems what we've done is correct. The following logs are quoted from the log file.
2010-06-21 13:27:11,248 DEBUG http.log_request Line:58 URL: GET > http://www.orkut.com/social/rest/people/17497171432676567286/@self?xoauth_requestor_id=17497171432676567286&opensocial_method=GET&oauth_nonce=76303009&oauth_timestamp=1277098031&fields=%40all&oauth_consumer_key=orkut.com%3A28804793479&oauth_signature_method=HMAC-SHA1&oauth_version=1.0&oauth_signature=Kr4tRP3dJYXgVkN2X6MtXu3iq0U%3D this log is the log for the correct request(correct means we can get the right response from orkut) And 2010-07-09 10:41:09,632 DEBUG http.log_request Line:58 URL: GET > http://www.orkut.com/social/rest/people/07253988588325867603/@self?xoauth_requestor_id=07253988588325867603&opensocial_method=GET&oauth_nonce=03434649&oauth_timestamp=1278643269&fields=%40all&oauth_consumer_key=orkut.com%3A28804793479&oauth_signature_method=HMAC-SHA1&oauth_version=1.0&oauth_signature=aTFskgYtKIKO6EVYLnc9BO5lJ4k%3D this log is the log for the wrong request(wrong means we don't get the right response from orkut). Comparing both requests, we can see the parameters are correct, and we are sure the user has installed the app. And also from the link http://code.google.com/apis/orkut/docs/rest/developers_guide_protocol.html, the request parameters are all correct based on the doc. I don't know * That might explain why your* *first user returns expected results and the second doesn't, usually complaining about a "permission denied." *mean. But I can't figure out till now. Regards. -- Tower Joo 朱涛 >>> import this On Wed, Jul 7, 2010 at 20:04, Prashant (Google) <[email protected]> wrote: > Tower, > > 2-legged OAuth for firing either REST/RPC requests to orkut is useful > only in the context of an app server requesting details about the > users who have the app installed, as Robson said and as also mentioned > in the guide (http://code.google.com/apis/orkut/docs/rest/ > developers_guide_protocol.html). So using this approach you'll be able > to make the requests only on behalf of all users (with the > xoauth_requestor_id parameter -- see above doc) who have installed > your app on their profiles, not otherwise. That might explain why your > first user returns expected results and the second doesn't, usually > complaining about a "permission denied." > -- You received this message because you are subscribed to the Google Groups "orkut Developer Forum" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/opensocial-orkut?hl=en.
