Account activity webhook replies with 214

chupeone · 2018-11-29T15:11:03.920Z

I’ve been trying to register the crc for an account activity API webhook. I’ve created a quick and dirty crc response using flask and a self signed SSL certificate. The code for the CRC challenge is the following:

app = Flask(__name__)
sslify = SSLify(app)
CORS(app)

@app.route('/default', methods=['GET'])
def default():
  return("default!!")

# Defines a route for the GET request
@app.route('/webhooks/twitter', methods=['GET'])
def webhook_challenge():

  # creates HMAC SHA-256 hash from incomming token and your consumer secret
  key_bytes= bytes("my consumer secret" , 'utf-8')
  data_bytes = bytes(request.args.get('crc_token'), 'utf-8') # Assumes `data` is also a string.
  sha256_hash_digest = hmac.new(key_bytes, msg=data_bytes, digestmod=hashlib.sha256).digest()

  # construct response data with base64 encoded hash
  response = {
    'response_token': 'sha256=' + str(base64.b64encode(sha256_hash_digest))
  }

  # returns properly formatted json response
  return json.dumps(response)

context = ('cert.pem', 'key.pem')
if __name__ == "__main__":
    app.run(host="0.0.0.0", port=443,ssl_context=context)

and the code to trigger the crc challenge is the following:

from requests_oauthlib import OAuth1Session
import urllib

CONSUMER_KEY = 'my consumer key'
CONSUMER_SECRET = 'my consumer secret'
ACCESS_TOKEN = 'my token'
ACCESS_SECRET = 'my secret'

twitter = OAuth1Session(CONSUMER_KEY,
                        client_secret=CONSUMER_SECRET,
                        resource_owner_key=ACCESS_TOKEN,
                        resource_owner_secret=ACCESS_SECRET)
webhook_endpoint = urllib.parse.quote_plus('https://52.55.57.237/webhooks/twitter')
url = 'https://api.twitter.com/1.1/account_activity/all/AccountAPI/webhooks.json?url={}'.format(webhook_endpoint)
r = twitter.post(url)
from pprint import pprint
pprint(vars(r))

Unfortunately, I keep getting a 214 error that I can’t find an explanation for. It says:

“code”:214,“message”:“Webhook URL does not meet the requirements. Please, check your SSL Configuration.”

However, I am not getting any request logged in flask, is this just because my ssl certificate is self signed? My problem is likely similar to:

Webhook account activity return code 214 REST API

[Screenshot%20from%202018-11-28%2013-44-00] [Screenshot%20from%202018-11-28%2013-47-31]

which is the only instance I have found of the same error message.

LeBraat · 2018-11-30T16:47:13.436Z

Have you reviewed our recommended server configurations section on this page?

ahyad.essam · 2018-12-02T07:28:52.015Z

Yes, it’s a grade A on ssllabs.com
I using a digitalocean free ssl , may be this is the problem ?
Is twitter not agree about free ssl certificate ?

andypiper · 2018-12-03T13:07:28.591Z

That should not be a problem, but without knowing the URL for the webhook it is difficult to help to troubleshoot.

ahyad.essam · 2018-12-03T14:51:20.287Z

This is my webhook
https://twitterapi.amaz.sa/webhook/5c003c50a8e63c0271ee921d

I purchased a new ssl certificate but the same response.
Please help me

ahyad.essam · 2018-12-03T16:59:04.157Z

This is my webhook
https://twitterapi.amaz.sa/webhook/5c003c50a8e63c0271ee921d

I purchased a new ssl certificate but the same response.
Please help me

andypiper · 2018-12-03T22:21:02.790Z

Please don’t post duplicate comments, this doesn’t help anyone. We can try to check the endpoint when we have time.

ahyad.essam · 2018-12-04T10:48:31.792Z

I’m sorry, i just was assign the comment to you.
I’m waiting your replay
thanks

LeBraat · 2018-12-13T22:22:04.988Z

Have you tried using our boilerplate app? I suggest you try this and use a Heroku app and see if you can get that up and running. Then, try swapping out the Heroku app website for your webhook URL.