1

OK, I am pulling my hair after trying this out too many times to debug. So please help me out here. I keep getting 401 Unauthorized error after I am redirected back.

Here is my code. What am I doing wrong here?

require 'rubygems'
require 'OAuth'
require 'json'

class SessionController < ApplicationController

   before_filter :load_oauth

   def index

     if session[:request_token] && params[:oauth_token]
         @request_token = OAuth::RequestToken.new(@consumer,
session[:request_token], session[:request_secret])
         @access_token =
@request_token.get_access_token(:oauth_verifier =>
params[:oauth_verifier])
         puts @access_token
         @info = @access_token.get("http://api.foursquare.com/v1/
test")

         flash[:notice] = "Foursquare! Yay!"

     else
         redirect_to(@foursqrurl)
     end

   end

   private
   def load_oauth
     @oauth_key = 'key'
     @oauth_secret = 'secret'
     @consumer = OAuth::Consumer.new(@oauth_key,@oauth_secret,{
      :site               => "http://foursquare.com",
      :scheme             => :header,
      :http_method        => :post,
      :request_token_path => "/oauth/request_token",
      :access_token_path  => "/oauth/access_token",
      :authorize_path     => "/oauth/authorize"
     })

     @request_token = @consumer.get_request_token(:oauth_callback =>
"http://localhost:3001/session")
     session[:request_token] = @request_token.token
     session[:request_secret] = @request_token.secret
     puts @request_token.token
     puts @request_token.secret
     # redirecting user to foursquare to authorize
     @foursqrurl = @request_token.authorize_url
     puts @foursqrurl

   end

end
4

2 回答 2

1

我对 Oauth 一无所知,这可能是完全错误的,但是,如果http://foursquare.com不是您的本地计算机,并且 oauth_callback 是http://foursquare.com完成后将调用的 URL,那么它将回调自身,因为它对 localhost 的定义将是它自己的 127.0.0.1 即它自己。

如果我在这里猜对了,那么将 :oauth_callback 更改为您的公共 IP 地址/名称。

于 2010-07-04T13:07:55.183 回答
0

我认为@request_token = OAuth::RequestToken.new(@consumer, session[:request_token], session[:request_secret])是错误的。

如果您已经拥有令牌和秘密,那么您实际上不需要做验证者的事情。

你应该像这样构造它:

OAuth::RequestToken.from_hash(consumer, { :oauth_token => params[:oauth_token] })
access_token = request_token.get_access_token(:oauth_verifier => params[:oauth_verifier])

或者,如果您已经拥有令牌和秘密,您应该这样做:

access_token = OAuth::AccessToken.from_hash(consumer, {
  :oauth_token => "YOUR_TOKEN",
  :oauth_token_secret => "YOUR_SECRET"
})
于 2013-04-04T01:05:43.397 回答