Hi Chiu, You're going to want to reset your keys on your application settings on dev.twitter.com -- we will really recommend not posting your consumer secrets to the group -- but easy to rectify if you go and change your keys.
Your signature base string is actually a bit different than your keys. In many OAuth libraries, they are difficult to access while other libraries will make it easy. If you trace your code execution path through the OAuth library you are using, you will find the step where your signature base string is created -- that particular string holds most of the things that can go wrong in an OAuth request. Taylor On Wed, Jun 16, 2010 at 12:53 PM, chiu ming luk <lukchium...@gmail.com>wrote: > Hi Taylor, > > Thanks for the prompt reply > > > > thanks > -chiu > > > On Jun 16, 12:35 pm, Taylor Singletary <taylorsinglet...@twitter.com> > wrote: > > Can you share your signature base string that was used to create this > > request? > > > > I also highly recommending using HTTP Header-based OAuth instead of > > query-string based OAuth. It separates concerns and makes debugging much > > simpler. > > > > Taylor Singletary > > Developer Advocate, Twitterhttp://twitter.com/episod > > > > On Wed, Jun 16, 2010 at 11:44 AM, chiu ming luk <lukchium...@gmail.com > >wrote: > > > > > The xAuth - favorites/create - is broken > > > > > I make calls to - favorites/create with an ID parameter using "xAuth" > > > > > $response = $connection->get ( 'favorites/create', array ('id' => > > > $status_id ) ); > > > > > but I always getting 401 "Not authorized" Error > > > > > =========================================== > > > /1/favorites/create.json? > > > > > > id=16170711730&oauth_consumer_key=vfM8qYNAEBfZsofKDNX65Q&oauth_nonce=bde7b35f5206ebc8a2cc31a7ea2b86ac&oauth_signature=V6%2BeC7%2FODp42W6GPV4EDWNpvSqY > > > %3D&oauth_signature_method=HMAC- > > > SHA1&oauth_timestamp=1276713005&oauth_token=13073932- > > > seUruGITdpHxCJsoUhpjectP4hpdRubW62Q7nftyA&oauth_version=1.0 > > > =========================================== > > > > > On the other hand, The exact same request using "Basic > > > Authentication", It will work fine. I either getting > > > - You have already favorited this status. > > > - Favorites added > > > > >