Shift oauth parameters up to Authorization header

Question

Shift oauth parameters up to Authorization header

gregsochanik opened this issue 11 years ago · 2 comments

The api supports passing Oauth signature and other params via the Authoriation header. We should change the Oauth signing within the wrapper to do this as well.

This way we can have a single strategy for authorizing requests across all http methods.

For now we'll just stick with supporting Content-type "application/x-www-form-urlencoded", which requires that the post body be included when generating the signature.

When we begin to support other request body content types, they will not need to be part of the signature.

Answer 1 · 2014-01-20T10:02:57.000Z

This is underway - on this fork/branch:

https://github.com/gregsochanik/SevenDigital.Api.Wrapper/tree/oauth-headers

Have completed for GET requests (i.e. replacing passing as querystring parameters with params passed via Authorization headers), just need to do the same for requests with a post body.

Answer 2 · 2014-02-03T10:46:42.000Z

Completed with this PR #126