I am trying to migrate our application’s usage of the version 1 API to the 1.1 API. The exact same request to read the user_timeline that works in the version 1 API fails in the 1.1 API with an Authentication error. I AM POSITIVE that my Signature base string and Authorization header match identically to the ones I generate using the OAuth tool on this site. I’ve even plugged in the exact nonce and timestamp used by the OAuth tool on this site to verify that my Authorization header and signature are IDENTICAL.
Something else must have changed with the 1.1 parsing of the authentication header. Can someone clarify precisely what has changed?