1

我已成功按照 rauth OAuth1 示例获取我的访问令牌,从而从fatsecret API检索数据。我将 access_token 和 access_token_secret 存储在搁置数据库中。我的问题是当我稍后尝试使用存储的令牌检索更多数据时收到“无效签名”错误。

这是我获取令牌并检索exercise_entries.get方法的原始脚本:

from rauth.service import OAuth1Service
import shelve

api_url = 'http://platform.fatsecret.com/rest/server.api'
shelf = shelve.open('token_shelf.db')

fatsecret = OAuth1Service(
    consumer_key = 'xxxxxxxxxxxxx',
    consumer_secret = 'xxxxxxxxxxxxx',
    name = 'fatsecret',
    request_token_url = 'http://www.fatsecret.com/oauth/request_token',
    access_token_url = 'http://www.fatsecret.com/oauth/access_token',
    authorize_url = 'http://www.fatsecret.com/oauth/authorize')

request_token, request_token_secret = fatsecret.get_request_token(
                        method = 'GET',
                        params = {'oauth_callback':'oob'})

authorize_url = fatsecret.get_authorize_url(request_token)

print 'Visit this URL in your browser: ' + authorize_url
pin = raw_input('Enter PIN from browser: ')
shelf['fatsecret_request_token'] = request_token
shelf['fatsecret_request_token_secret'] = request_token_secret
shelf['fatsecret_pin'] = pin

session = fatsecret.get_auth_session(
                                     request_token, 
                                     request_token_secret, 
                                     params={'oauth_verifier': pin}
                                     )
shelf['fatsecret_access_token'] = session.access_token
shelf['fatsecret_access_token_secret'] = session.access_token_secret

my_params = {'method': 'exercise_entries.get', 'format': 'json'}
r = session.get(api_url, params=my_params)

print r.json()
print r.content
shelf.close()

然后我尝试从架子上恢复我的 access_token 和 access_token_secret 并打开一个新会话,但我被告知我的签名无效。

from rauth.service import OAuth1Service
import shelve
api_url = 'http://platform.fatsecret.com/rest/server.api'
shelf = shelve.open('token_shelf.db')
fs_access_token = shelf['fatsecret_access_token']
fs_access_token_secret = shelf['fatsecret_access_token']

fatsecret = OAuth1Service(
    consumer_key = 'xxxxxxxxxxxxx',
    consumer_secret = 'xxxxxxxxxxxxx',
    name = 'fatsecret',
    request_token_url = 'http://www.fatsecret.com/oauth/request_token',
    access_token_url = 'http://www.fatsecret.com/oauth/access_token',
    authorize_url = 'http://www.fatsecret.com/oauth/authorize')

session = fatsecret.get_session((fs_access_token,fs_access_token_secret))

my_params = {'method': 'exercise_entries.get', 'format': 'json'}
r = session.get(api_url,params=my_params)
print r.content
print r.url
shelf.close()

这返回r.content为:

{ "error": {"code": 8, "message": "Invalid signature: oauth_signature 'ccZpSYAPSn+umkTxcAVH7EChVvw='" }}

并且r.url是:

http://platform.fatsecret.com/rest/server.api?oauth_nonce=604416f368159818e3ad8252a0da323be16319a3&format=json&oauth_consumer_key=xxxxxxxxxxxxx&oauth_timestamp=1390015877&oauth_signature_method=HMAC-SHA1&oauth_version=1.0&oauth_token=xxxxxxxxxxxxx&oauth_signature=l4Ricqpbbwl%2BHPS2ItLLnvXQo%2FA%3D&method=exercise_entries.get

唯一引起我注意的是 r.url 参数似乎没有按字典顺序排序,但我不知道这是否准确反映了发送到 fatsecret 的内容,无论如何它在第一个脚本中运行良好。

我尝试过使用 OAuth1Session而不是类似的东西OAuth1Service,但我收到了完全相同的结果。

我将不胜感激任何帮助以使其正常工作。

4

1 回答 1

1

我无数次检查了这段代码,没有发现任何错误。当我为调试添加额外的打印时,我注意到我在重用会话的第 6 行检索了两次 access_token。毕竟这只是一个错字。

改变:

fs_access_token = shelf['fatsecret_access_token']
fs_access_token_secret = shelf['fatsecret_access_token']

到:

fs_access_token = shelf['fatsecret_access_token']
fs_access_token_secret = shelf['fatsecret_access_token_secret']

所以上面的代码其实很好的演示了用python用fatsecret api进行认证。

于 2014-01-28T02:08:01.277 回答