@Gabriel: I am using that. For the "signmessage" I am passing in something that looks similar to this:
POST&https%3A%2F%2Fapi.login.yahoo.com%2Foauth%2Fv2%2Fget_request_token &oauth_consumer_key%3Ddj0yJmk9YmxIanRLOGQybWFCJmQ9WVdrOUxWbFBVMWRUTmpRbWNHbzlNQ1o1UFRFLSZzPWNvbnN1bWVyc2VjcmV0Jng9YTc- %26oauth_nonce%3DJsZywH %26oauth_signature_method%3DHMAC-SHA1 %26oauth_timestamp%3D1221089876 %26oauth_version%3D1.0 %26xoauth_lang_pref%3Den-us for the signkey, i pass in: <cfset signkey = "#consumerSecret#%26#session.oauth_token_secret#" /> It gives me back gobbly-gook when i pass that into the hmac encrypt function: �.Ñ{3l���Ӵ�NoH�9� ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:344791 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm