The OAuth1 authentication needs the params: oauth_token, oauth_token_secret, and oauth_token_verifier, which is retrieved at different steps of the authentication process. These need to be stored so that they can be used at the final step which is requesting the access token.
Specifically, the oauth_token_secret was null (and this is needed as part of the signing key) so the signature was invalid.
oauth_token
,oauth_token_secret
, andoauth_token_verifier
, which is retrieved at different steps of the authentication process. These need to be stored so that they can be used at the final step which is requesting the access token.oauth_token_secret
was null (and this is needed as part of the signing key) so the signature was invalid.