I know Its is necessary that parameter added in request (verify_credentials) must be part of the ‘base’ in "signature’
my base (Parameter string) looki like this
GET&https%3A%2F%2Fapi.twitter.com%2F1.1%2Faccount%2Fverify_credentials.json
&oauth_consumer_key%3DC0V7gMlhDxTEMdDstVgjjSD09
%26oauth_nonce%3DZZZZZ
%26oauth_signature_method%3DHMAC-SHA1
%26oauth_timestamp%3D1510936416
%26oauth_token%3DTokenTokenTokenTokenTokenTokenTokenTokenToken
%26oauth_version%3D1.0
%26include_email%3Dtrue
notice: in the end “include_email” is added with value true
this parameter list will be part of the “Authorization” header as “oauth_signature=” ( after base64.encodeing)
final Authorization header look like this (With fake values)
OAuth oauth_consumer_key=“ZZZZZZZZZZZZZZZZ”,oauth_nonce=“RFhJCV”,oauth_signature_method=“HMAC-SHA1”,oauth_timestamp=“1510936416”,oauth_token=“UUUUUUUUUUUUUUU”,oauth_version=“1.0”,oauth_signature=“SIFAKEEEEEEEEEEEEE”
and url is this
https://api.twitter.com/1.1/account/verify_credentials.json
Every time i execute the URL got 401, if i remove “include_email” works fine but no email in the response
