Incorrect OAuth http header parsing
If I understood this section of the OAuth spec well : http://oauth.net/core/1.0a#auth_header_authorization, the realm parameter is optional.
The library I'm using (oauth-signpost) does omit it. The signature piston generated was thus incorrect and all my requests were rejected.
I've attached a patch that should take care of this issue.