400 when getting oauth_token oauth_token_secret



Hi, I’m very new to twitter API.
I now develop a browser extension, and get trouble with OAuth.

In the part “A” in this figure http://oauth.net/core/1.0/#anchor9, I receive “400 Bad request” response from https://api.twitter.com/oauth/request_token (the detail is {“errors”:[{“code”:215,“message”:“Bad Authentication data.”}]}).
However, I receive 200 response from https://twitter.com/oauth/request_token, and receive oauth_token and oauth_token_secret. Even though I use same code except for the URL.

In my understanding, https://twitter.com/oauth/request_token is deprecated (or, invalidated) and developers must use https://api.twitter.com/oauth/request_token. What happens?

Please explain the reason to me. Any hints are welcome.


I figure out the problem by myself. I forget to url encoding of the signature.