OK I think I found it. I got the certificates from https://www.igoogle.com/opensocial/certificates/xoauth_public_key and https://www.igoogle.com/opensocial/certificates/xoauth_signature_publickey and read the details in Firefox. They both give the same public key:
Modulus (1024 bits): d6 b9 e1 ad b8 61 0b 1f 4e b6 3c 09 3d ab e8 e3 2b b6 e8 a4 3a 78 2f d3 51 20 22 45 95 d8 00 91 33 9a a7 a2 48 ea 30 57 26 97 66 c7 5a ef f1 9b 0c 3f e1 b9 7f 7b c3 c7 cc af 9c d0 1f 3c 81 15 10 58 fc 06 b3 bf bc 9c 02 b9 51 dc fb a6 b9 17 42 e6 46 e7 22 cf 6c 27 10 fe 54 e6 92 6c 0c 60 76 9a ce f8 7f ac b8 5a 08 4a dc b1 64 bd a0 74 41 b2 ac 8f 86 9d 1a de 58 09 fd 6c 0a 25 e0 79 Exponent (24 bits): 01 00 01 But my _isValidSignature() function still returns False. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to google-appengine@googlegroups.com To unsubscribe from this group, send email to google-appengine+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en -~----------~----~----~----~------~----~------~--~---