Hi,
I’m trying to request an access token but keep getting a 401 unauthorized response. This is the code I have, please can anyone let me know if there are any obvious problems in any of the steps?
string oauth_consumer_key = "XXX";
string oauth_consumer_secret = "YYY";
string oauth_version = "1.1";
string oauth_signature_method = "HMAC-SHA1";
string oauth_url = "https://api.twitter.com/oauth/request_token";
string oauth_nonce = Convert.ToBase64String(
new ASCIIEncoding().GetBytes(
DateTime.Now.Ticks.ToString()));
var timeSpan = DateTime.UtcNow
- new DateTime(1970, 1, 1, 0, 0, 0, 0,
DateTimeKind.Utc);
string oauth_timestamp = Convert.ToInt64(timeSpan.TotalSeconds).ToString();
string oauth_callback = Request.Url.ToString();
string signatureFormat = "oauth_callback=\"{0}\"&oauth_consumer_key=\"{1}\"&oauth_nonce=\"{2}\"&oauth_signature_method=\"{3}\"&oauth_timestamp=\"{4}\"&oauth_version=\"{5}\"";
var authSignature = string.Format(signatureFormat,
Uri.EscapeDataString(oauth_callback),
Uri.EscapeDataString(oauth_consumer_key),
Uri.EscapeDataString(oauth_nonce),
Uri.EscapeDataString(oauth_signature_method),
Uri.EscapeDataString(oauth_timestamp),
Uri.EscapeDataString(oauth_version));
string baseString = string.Format("POST&{0}&{1}", Uri.EscapeDataString(oauth_url), Uri.EscapeDataString(authSignature.ToString()));
var compositeKey = string.Concat(Uri.EscapeDataString(oauth_consumer_secret), "&"); // wouldn't have auth token when doing authorization, so key should be left like this
string oauth_signature = "";
using (HMACSHA1 hasher = new HMACSHA1(ASCIIEncoding.ASCII.GetBytes(compositeKey)))
{
oauth_signature = Convert.ToBase64String(
hasher.ComputeHash(ASCIIEncoding.ASCII.GetBytes(baseString)));
}
string headerFormat = "OAuth oauth_callback=\"{0}\", oauth_consumer_key=\"{1}\", oauth_nonce=\"{2}\", oauth_signature=\"{3}\", oauth_signature_method=\"{4}\", oauth_timestamp=\"{5}\", oauth_version=\"{6}\"";
var authHeader = string.Format(headerFormat,
Uri.EscapeDataString(oauth_callback),
Uri.EscapeDataString(oauth_consumer_key),
Uri.EscapeDataString(oauth_nonce),
Uri.EscapeDataString(oauth_signature),
Uri.EscapeDataString(oauth_signature_method),
Uri.EscapeDataString(oauth_timestamp),
Uri.EscapeDataString(oauth_version));
ServicePointManager.Expect100Continue = false;
HttpWebRequest authRequest = (HttpWebRequest)WebRequest.Create(oauth_url);
authRequest.Method = "POST";
authRequest.Headers.Add("Authorization", authHeader);
authRequest.Headers.Add("Accept-Encoding", "gzip");
authRequest.ContentType = "application/x-www-form-urlencoded;charset=UTF-8";
authRequest.AutomaticDecompression = DecompressionMethods.GZip | DecompressionMethods.Deflate;
try
{
WebResponse authResponse = authRequest.GetResponse(); // errors here
}
catch (Exception ex)
{
}
