Commits

Author Commit Message Labels Comments Date
Andy Bennett
Document 1.0a Flow which includes a verifier. Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Andy Bennett
Release metadata wrangling and documentation for v0.2. Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Tags
0.2
Andy Bennett
Documentation changes from the wiki https://wiki.call-cc.org/eggref/4/oauth Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Andy Bennett
Fix verifier assert for services that require it during acquire-token-credential The logic to check that the correct arguments have been applied to the procedure was incomplete and just aborted in any case where the verifier was supposed to be present. Ooops! Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Andy Bennett
Fix timestamp and nonce generation timestamps and nonces are not required for PLAINTEXT signatures but they have to be valid for HMAC-SHA1 signatures. Here we do the minimum possible to make them work for the Twitter API. The nonce should be unique per timestamp but here we just use a constant. For the Twitter API this seems to work even if more than one request per second (the granularity of the timestamp) is made. Signed-off-b…
Andy Bennett
HMAC-SHA1 signature support Most of the effort here is in building up the "Signature Base String" which is then trivially signed by using the HMAC and SHA1 eggs. The "Signature Base String" will also be required for RSA-SHA1 support. Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Andy Bennett
Fix serialisation of protocol version identifiers The exact->inexact strategy only works when the version is a number. The version is actually a symbol. Here we introduce explicit strings to use during the serialisation of the version identifer as the API already uses a mixture of inexact numbers and symbols. This bug was reported by Nick Van Horn when he was trying to use 1.0a support to bind the Twitter APIs. Signed-off-by: Andy Bennett <an…
Andy Bennett
Update copyright header Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Andy Bennett
A Chicken Scheme egg release-info file ...as specified at http://wiki.call-cc.org/releasing-your-egg Signed-off-by: Andy Bennett <andyjpb@knodium.com>
Tags
0.1
Andy Bennett
Initial Commit Preliminary support for OAuth 1.0 with PLAINTEXT signing. This was written to the RFC 5849 spec and then changes were made to support the OAuth 1.0 flavour that Dropbox use. OAuth 1.0a might work as well. Dropbox appear to send a spurious \r on some form-urlencoded response bodies. Therefore we always strip trailing \r characters from acquire-temporary-credential and acquire-token-credential res…