请注意Twitter应用程序的唯一身份验证PHP OAuth的错误
完全实施工作的Twitter应用程序的唯一身份验证的Oauth PHP库现在可以在下面GitHub的链接中找到:Twitter Application Only Authentication OAuth Php
我试图让我的应用程序通过Twitter的应用程序唯一身份验证进行身份验证。在以下网址见文档:
Twitter Developer Documentation fro Application-only authentication
我得到第2步,用粘贴下面的代码请求建立承载令牌。我收到看起来像下面的响应:
HTTP/1.1 200 OK
Date: Tue, 19 Mar 2013 15:13:03 GMT
Status: 200 OK
X-Frame-Options: DENY
ETag: "6b7ec13d0ef1e9d8e0b39bec5266ba7b"
X-Runtime: 0.06008
Pragma: no-cache
Last-Modified: Tue, 19 Mar 2013 15:13:03 GMT
Content-Type: application/json; charset=utf-8
X-Transaction: 55809f2187d74c8e
X-MID: 4503f89925628df071cb1d27c3e6953709234b1b
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
Set-Cookie: k=10.37.190.122.1363705983314067; path=/; expires=Tue, 26-Mar-13 15:13:03 GMT; domain=.twitter.com
Set-Cookie: _twitter_sess=BAh7CSIKZmxhc2hJQzonQWN0aW9uQ29udHJvbGxlcjo6Rmxhc2g6OkZsYXNo%250ASGFzaHsABjoKQHVzZWR7ADoMY3NyZl9pZCIlZTI5MjJmNDI5ODY4MzM0NjAz%250AMzkwZTE2NDY5MzdiNGM6D2NyZWF0ZWRfYXRsKwhV8TWDPQE6B2lkIiU2NzEy%250AZjgzOTNjYjc4NjNhYzgwMjU2Mjc1Yzc0ZDYyMw%253D%253D--22b3f64a757c1f9f3c3ae8df9ee434848c43eee8; domain=.twitter.com; path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 138
Server: tfe
Set-Cookie: guest_id=v1%3A136370598331525689; Domain=.twitter.com; Path=/; Expires=Thu, 19-Mar-2015 15:13:03 UTC
‹«V*ÉÏNÍx‹/©,HU²RJJM,J-RÒQJLNN-.ŽKrű‚|sg(«¢Ê(Ô5*ÝÕÃÂGÕÈÌÃxß²(ÐÄÙ(Í4ØÍÔDÕØ¥2+È³Ô Ô¨Ê7«À«$,+ÛÃ"ß35
正如你可以看到返回并不n要似乎回到一个JSON字符串的内容,如文档
HTTP/1.1 200 OK
Status: 200 OK
Content-Type: application/json; charset=utf-8
...
Content-Encoding: gzip
Content-Length: 140
{"token_type":"bearer","access_token":"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA%2FAAAAAAAAAAAAAAAAAAAA%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"}
描述我们可以看到
‹«V*ÉÏNÍx‹/©,HU²RJJM,J-RÒQJLNN-.ŽKrű‚|sg(«¢Ê(Ô5*ÝÕÃÂGÕÈÌÃxß²(ÐÄÙ(Í4ØÍÔDÕØ¥2+È³Ô Ô¨Ê7«À«$,+ÛÃ"ß35
不等于
{"token_type":"bearer","access_token":"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA%2FAAAAAAAAAAAAAAAAAAAA%3DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"}
我想知道如果这可能是一个可能的编码错误,或者如果我从根本上做错了cURL的东西。
我的代码粘贴下面,任何帮助,将不胜感激:
乔恩
<?php
// from https://dev.twitter.com/docs/auth/application-only-auth
$consumer_key = 'myconsumerkey';
$consumer_secret = 'myconsumersecret';
// step 1
// step 1.1 - url encode the consumer_key and consumer_secret in accordance with RFC 1738
$encoded_consumer_key = urlencode($consumer_key);
$encoded_consumer_secret = urlencode($consumer_secret);
// step 1.2 - concatinate encoded consumer, a colon character and the encoded consumer secr et
$bearer_token = $encoded_consumer_key.':'.$encoded_consumer_secret;
// step 1.3 - base64-encode bearer token
$base64_encoded_bearer_token = base64_encode($bearer_token);
// step 2
$url = "https://api.twitter.com/oauth2/token"; // url to send data to for authentication
$headers = array(
"POST /oauth2/token HTTP/1.1",
"Host: api.twitter.com",
"User-Agent: my Twitter App v.1",
//"Authorization: Basic ".$base64_encoded_bearer_token."",
"Authorization: Basic ".$base64_encoded_bearer_token."",
"Content-Type: application/x-www-form-urlencoded;charset=UTF-8",
"Content-Length: 29",
"Accept-Encoding: gzip"
);
$ch = curl_init(); // setup a curl
curl_setopt($ch, CURLOPT_URL,$url); // set url to send to
curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); // set custom headers
curl_setopt($ch, CURLOPT_POST, 1); // send as post
curl_setopt($ch, CURLOPT_POSTFIELDS, "grant_type=client_credentials"); // post body/fields to be sent
$header = curl_setopt($ch, CURLOPT_HEADER, 1); // send custom headers
//$httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
$result = curl_exec($ch); // run the curl
curl_close($ch); // stop curling
?>
我觉得'接受编码:gzip '头文件可能是你的问题 - 你说你接受一个gzip的回应,但是你不知道该怎么处理它......所以不要设置头文件。 – CBroe 2013-03-19 15:42:54
这就是问题所在:D感谢您的回应 – jonhurlock 2013-03-19 15:51:18
这纯粹是为了代码的可读性,但是当您使用'$ bearer_token'作为'$ encoded_consumer_key。'的变量名:'。'encoded_consumer_secret'时,您实际上是_requesting_持有者令牌,所以更好的变量名称将是'$ credentials'和'$ base64cred'。再一次,纯粹为了可读性。 – inorganik 2013-09-16 16:44:38