0

contacts oauth signature

Hi, I have successfully gotten access tokens for users to read their contacts data (this scope is set for the key as well). However, when I fetch something like:
CODE
http://social.yahooapis.com/v1/user/EK7E6HWFYI6H5DUMGMLXP4UN3Q/contacts?format=xml
&realm=yahooapis.com
&oauth_consumer_key=dj0yJmk9...
&oauth_nonce=7e987f3...
f&oauth_signature_method=HMAC-SHA1
&oauth_timestamp=1248297500
&oauth_token=A%3DTww9fzDCgAJ976WfON66p...Fxfk2hPg--
&oauth_version=1.0
&oauth_signature=hzo2n%2BYCeZLDWEbYim3qCquli4A%3D

(newlines for readability)

I always get an invalid signature. I am sorting the query parameters etc. My signing for the access token works, and it's the same function. I'm using the shared secret and the access token secret in the hmac, is that right? like I use the shared secret and the request token secret when signing for the access token.

Can anyone see what am I doing wrong here?

-chad

1 Reply

Recent Posts

in General Discussion at YDN