search

xbill7 / oauth

Automatically exported from code.google.com/p/oauth
0 stars 0 forks source link

c# lib baseSignature bug #8

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
There is a bug in the c# library when generating the baseSignature. 

Method: public string GenerateSignatureBase

            signatureBase.AppendFormat("{0}&",
UrlEncode(normalizedRequestParameters));
            signatureBase.AppendFormat("{0}&", UrlEncode(consumerSecret));
            signatureBase.AppendFormat("{0}", UrlEncode(tokenSecret));

should be removed and replaced with 

            signatureBase.AppendFormat("{0}",
UrlEncode(normalizedRequestParameters));

I tested with the testcase outlined in http://oauth.net/core/1.0/#anchor30,
Appendix A.5.1. the secret tokens shouldn't be included in the
signatureBase according to the expected output. Now my oAuth lib
modifications work with hyves.net api 0.9, not sure if this is wrong
behavior on their side or in the oAuthBase code.

Original issue reported on code.google.com by tom....@gmail.com on 29 Jan 2008 at 3:38