This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
This site is in read only until July 22 as we migrate to a new platform; refer to this community post for more details.
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

OAuth 1.0 Failure to Authenticate

Posted on 06-15-2016 01:40 PM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi,

I have apigee calling a target which has OAuth 1.0 as security. We have exchanged keys and tokens. I have a script (obtained from here: https://github.com/ddo/oauth-1.0a) in apigee which runs, and generates the signature, nonce and timestamp, then creates the correct header. The target responds with invalid login.

I have tried a different script (obtained from here: https://github.com/jrconlin/oauthsimple), but the same problem occurs.

I have tried making the same call through Postman (with the same credentials), and it works. The team on the target server have tried calling themselves with oauth using the same script (https://github.com/ddo/oauth-1.0a), and it works.

There seems to be a problem in apigee that I cannot see. Here's a sample header I'm providing from apigee for reference (though I'm sure it is okay because the structure is the same as from Postman):

OAuth realm="****",oauth_consumer_key="*****",oauth_token="****",oauth_signature_method="HMAC-SHA1",oauth_timestamp="1466021105",oauth_nonce="bTgpA",oauth_version="1.0",oauth_signature="***"

Any suggestions as to what the problem may be?

Thank you for any help,

Aleks

1 6 1,159
Topic Labels
Reply
6 REPLIES 6
Top Solution Authors
View all