Query string ordering fix.

[pda]

Turns out Symfony\Component\HttpFoundation\Request getQueryString() isn't suitable for generating/verifying signing strings:

Generates the normalized query string for the Request. It builds a normalized query string, where keys/value pairs are alphabetized and have consistent escaping. — http://api.symfony.com/2.0/Symfony/Component/HttpFoundation/Request.html#method_getQueryString

I'm told by @dhotson that $request->server->get('QUERY_STRING') is probably what I want.

• [x] Demonstrate bug with failing test.
• [x] Fix implementation.
• [x] Squash commits
• [x] :ship: