Hi All, I've made a patch and attached it to Issue 110 [1] in the tracker to implement OAuth 1.0a in the Python oauth module. It breaks compatibility for 1.0 as 1.0a now requires a new oauth_verifier handshake during the authorization and access token retrieval steps. It implements this on the server side by using uuid.uuid4() to generate a UUID which gets passed to the data store so that it can be validated later during the access token request. Service Provider server software will need to present the Verifier to the user, or send to the Consumer if a callback was specified, as per the spec. The test in examples/ sends the Verifier as a header to the client, which then retrieves and sends back as a parameter during the access token request.
In the patch I also added the __str__ method to OAuthError, and changed the server.py in examples/ to use str(err) instead of the deprecated err.message. The OAuthError __init__ still needs to be updated to not use the message attribute though, as it has been deprecated and produces a warning with Python 2.6. Does the patch look good? I'd like to get it accepted ASAP. Thanks! [1] http://code.google.com/p/oauth/issues/detail?id=110 --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oauth@googlegroups.com To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---
