The POST /oauth/access_token endpoint does not require the Authorization header to be set [1]. If signRequired is true in
makeRequest(), then OAuth 1.0 parameters will be added to the Authorization header [2,3]. Twitter will then return 401 - Request Token missing as a response for the POST request.
This might be a bug of Twitter API as Twitter should ignore the Authorization header in this endpoint when it is not required.
Fix Issue #310.
The
POST /oauth/access_token
endpoint does not require theAuthorization
header to be set [1]. IfsignRequired
istrue
inmakeRequest()
, then OAuth 1.0 parameters will be added to theAuthorization
header [2,3]. Twitter will then return401 - Request Token missing
as a response for thePOST
request.This might be a bug of Twitter API as Twitter should ignore the
Authorization
header in this endpoint when it is not required.[1]: https://developer.twitter.com/en/docs/authentication/api-reference/access_token