【发布时间】:2016-06-23 06:36:31
【问题描述】:
我有一个媒体 API(委托人应用程序),我试图允许第三方应用程序(消费者应用程序)的用户代表用户(用户)通过我的 API 发布视频,所以我正在实施 @987654321 @。我能够完成第一步,验证用户的凭据,所以我知道我的凭据是有效的;但是,当我去初始化上传时,我得到一个“无法验证你”的错误。在分块媒体上传文档中,我注意到了这一部分,但我不清楚这如何适用于通过 Oauth Echo 执行 chunked media upload:
"因为方法使用了multipart POST,所以OAuth处理了一点 不同。 POST 或查询字符串参数不使用时 计算 OAuth 签名基本字符串或签名。只有 使用了 oauth_* 参数。”
这是我请求的调试输出:
opening connection to upload.twitter.com:443... opened starting SSL for upload.twitter.com:443... SSL established <- "POST /1.1/media/upload.json?command=INIT&media_type=video%2Fmp4&total_bytes=2000 HTTP/1.1\r\nAuthorization: OAuth oauth_consumer_key=\"XXXXXXXXXXXXXXXXX\", oauth_nonce=\"XXXXXXXXXXXXXXXXX\", oauth_signature=\"XXXXXXXXXXXXXXXXX\", oauth_signature_method=\"HMAC-SHA1\", oauth_timestamp=\"1457492349\", oauth_token=\"XXXXXXXXXXXXXXXXX\", oauth_version=\"1.0\"\r\nConnection: close\r\nHost: upload.twitter.com\r\nContent-Length: 0\r\nContent-Type: application/x-www-form-urlencoded\r\n\r\n" <- ""
-> "HTTP/1.1 401 Authorization Required\r\n"
-> "connection: close\r\n"
-> "content-length: 64\r\n"
-> "content-type: application/json; charset=utf-8\r\n"
-> "date: Wed, 09 Mar 2016 03:10:23 GMT\r\n"
-> "server: tsa_a\r\n"
-> "set-cookie: guest_id=v1%3A145749302339262531; Domain=.twitter.com; Path=/; Expires=Fri, 09-Mar-2018 03:10:23 UTC\r\n"
-> "strict-transport-security: max-age=631138519\r\n"
-> "vary: Origin\r\n"
-> "x-connection-hash: 6a4b3c223cca493550d30c3fed750df1\r\n"
-> "x-frame-options: SAMEORIGIN\r\n"
-> "x-response-time: 7\r\n"
-> "x-xss-protection: 1; mode=block\r\n"
-> "\r\n" reading 64 bytes...
-> ""
-> "{\"errors\":[{\"code\":32,\"message\":\"Could not authenticate you.\"}]}" read 64 bytes Conn close
=> #[{"code"=>32, "message"=>"Could not authenticate you."}]}, @response=#, @headers={"connection"=>["close"], "content-length"=>["64"], "content-type"=>["application/json; charset=utf-8"], "date"=>["Wed, 09 Mar 2016 03:10:23 GMT"], "server"=>["tsa_a"], "set-cookie"=>["guest_id=v1%3A145749302339262531; Domain=.twitter.com; Path=/; Expires=Fri, 09-Mar-2018 03:10:23 UTC"], "strict-transport-security"=>["max-age=631138519"], "vary"=>["Origin"], "x-connection-hash"=>["6a4b3c223cca493550d30c3fed750df1"], "x-frame-options"=>["SAMEORIGIN"], "x-response-time"=>["7"], "x-xss-protection"=>["1; mode=block"]}>
我正在使用 HTTParty gem 发出 HTTP 请求。它们的外观如下:
#IRL I'm getting the following two vars from the user, but for sake of demonstration this is more or less what they'll be
x_auth_service_provider = 'https://api.twitter.com/1.1/account/verify_credentials.json'
x_verify_credentials_authorization = 'OAuth oauth_consumer_key="XXXX", oauth_nonce="XXXX", oauth_signature="XXXX", oauth_signature_method="HMAC-SHA1", oauth_timestamp="1457473883", oauth_token="XXXX", oauth_version="1.0"'
response = HTTParty.get(x_auth_service_provider,
:headers => {"Authorization" => x_verify_credentials_authorization})
if response.code == 200
init = HTTParty.post('https://upload.twitter.com/1.1/media/upload.json',
:headers => {"Authorization" => x_verify_credentials_authorization},
:body => {'command' => 'INIT', 'media_type'=> 'video/mp4', 'total_bytes' => '2000'},
:debug_output => $stdout)
end
【问题讨论】:
标签: ruby-on-rails ruby-on-rails-4 twitter oauth httparty