Invalid signature errors upon POST-ing to /request_token

[carlosonunez]

The documentation says that I need to send a POST request to this endpoint after generating the appropriate headers. Doing that yields invalid signature errors; however, issuing the same request (after changing the nonce and signature) with a GET method issues a token successfully.

Is the documentation outdated, or is this a bug?

[lundbrianh]

@carlosonunez To answer your question directly, both POST and GET methods will work for generating a request token. The request method dictates where application looks for the parameters, so splitting the parameters up (e.g. between the body and query) could generate a response like this.

I'd like to be able to track down your requests to look at the differences. Would you be willing to provide the oauth_nonce values from your requests, if you still have them? If not, or if you would rather keep such a conversation more private, please reach out to api-support@tripit.com with the name of your app so we can help identify exactly what's going on here.

Thanks for asking the question!

[lucasgerroir]

We have been using your api to create, update, and delete trips. We are all of a sudden receiving "Invalid Signature" without changing anything when trying to create a trip. We have investigated this issue with no results.

public 'code' => string '401' (length=3) public 'detailed_error_code' => string '104.100000' (length=10) public 'description' => string 'Invalid Signature' (length=17)

We POST to the following api end point https://api.tripit.com/v1/create and pass the following parameters in the authorization header.

oauth_consumer_key oauth_nonce oauth_timestamp oauth_signature_method oauth_version oauth_token oauth_signature

I've tried generating new users request token, request token secret, access token, and access token secret.

Any advice would be greatly appreciated.

[arnpoirier]

Hi @lucasgerroir, Do you mind emailing api-support@tripit.com? It looks like we are going to need more information from you before we are able to answer your request for advice.

What endpoint are you calling? Can you provide timestamps for some of the calls failing + any other identifying info (that's appropriate to send via email) Thanks!

Arnaud

[todsul]

Hi @lucasgerroir, did you figure this out in the end? I'm having the same issue; what worked for years is suddenly failing with "Invalid Signature". Any help would be greatly appreciated.

[LingaTigeen]

Any solution for the above issue? Its happening for me as well.

[racechand]

Hi Support Team,

Create api not working. It throwing invalid signature. I sent detail information to api-support@tripit.com. Please check it and do needful.

[darrinmn9]

Hi All - A Tripit dev here. I'm not sure if everyones comments on this thread stem from the same root issue or not, but I was able to help @racechand with the issue he was facing - he was using the tripit api bindings for php. If others are having the same issue (and using our public php bindings https://github.com/tripit/php_binding_v1), does this proposed fix solve your issues?

https://github.com/tripit/php_binding_v1/pull/4

[ryzhang]

Create API doesn't work for me as well. It returns 'Invalid Signature'. My project is a node project and the code is written in javascript. I use the node oauth library (https://www.npmjs.com/package/oauth). The Get request works fine but the Create Request receives the 'Invalid Signature', I have emailed the issue with details to api-support@tripit.com. Please help check it. Thanks.