[2.0] Fixing a couple of issues found during functional testing

[stevenmaguire]

The temporary credentials method needs to be POST and I added a ksort to the OAuth Authorization header key-value pairs.

[stevenmaguire]

@bencorlett any thoughts on this or the other 2.0 PRs?

[bencorlett]

This looks great.

I'm back in the office and getting back into OS now :)