Thanks for the reply Taylor. The behavior is more erratic than we first observed, as including url’s does appear to work. I am doing more investigation, but here are two examples - one update that did work, and one that did not.
Our consumer key for this product is: AKJT6hJYxttdXW9r8JBXA
This status update worked:
https://api.twitter.com/1/statuses/update.json?include_entities=true
headers:
Content-type: application/x-www-form-urlencoded
Authorization: OAuth oauth_consumer_key=“AKJT6hJYxttdXW9r8JBXA”, oauth_nonce=“32ebda8766072b65e173”, oauth_signature=“HJ4KISooJr68A2Kzl80rgadYtC0%3D”, oauth_signature_method=“HMAC-SHA1”, oauth_timestamp=“1348162846”, oauth_token=“493579259-7VlJTEpuStGnOBoqg8Lyo0FRo42yEn1cmwDCsioC”, oauth_version=“1.0”
POST body:
status=hi%20there%20world%20www.cbc.ca
This status update did not work:
https://api.twitter.com/1/statuses/update.json?include_entities=true
Headers:
Content-type: application/x-www-form-urlencoded
Authorization: OAuth oauth_consumer_key=“AKJT6hJYxttdXW9r8JBXA”, oauth_nonce=“e53aa7fc795ed22ff93a”, oauth_signature=“oyDOKK2zemnR6%2FvhqqMVZpYVRCg%3D”, oauth_signature_method=“HMAC-SHA1”, oauth_timestamp=“1348163401”, oauth_token=“493579259-7VlJTEpuStGnOBoqg8Lyo0FRo42yEn1cmwDCsioC”, oauth_version=“1.0”
POST body:
status=x%20xxxxxx%20xxxxxxxx%20xxxx%20xx%20xxxx%20xxxxxxxxxxxx%20xxxxxx%20xx%20%23xxxxxxxxxxxxxxx.%20xxxxx%20xxxx%27xx%20xxx?%20xx%20xxxx%20xxxx%20xxxxx%20xxx%21
(I replaced the actual text with x’s)
The data we get back from the 401 response is:
“{”“error”":"“Could not authenticate with OAuth.”","“request”":""/1/statuses/update.json?include_entities=true""}"
