Oauth; Differences in Content from Postman?

Hi!

Could you provide us with the contents from the http log in the bottom of the main SoapUI window when you are getting this server error together with any error you are getting in soapui error log?
Please provide them here or using the Support form: http://www.soapui.org/Support/support-overview.html

--
Regards

Erik
SmartBear Sweden

Ok the content of the HTTP Log:

Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "GET /api/20130409/system/institutions HTTP/1.1[\r][\n]"
Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "Accept-Encoding: gzip,deflate[\r][\n]"
Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "Authorization: OAuth oauth_consumer_key="6E65A733-B50B-4BAF-A15F-B2E9BAXXXXXX", oauth_nonce="-545032362003550119", oauth_signature="cZf8EpxG%2Bl3P1qCvm7FcLv6HXT0%3D", oauth_signature_method="HMAC-SHA1", oauth_timestamp="1390314630", oauth_token="c4032d4e-60ba-44a5-a895-6a697aXXXXXX", oauth_version="1.0"[\r][\n]"
Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "Host: qa3app3west.cloudapp.net[\r][\n]"
Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "Connection: Keep-Alive[\r][\n]"
Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "User-Agent: Apache-HttpClient/4.1.1 (java 1.5)[\r][\n]"
Tue Jan 21 07:30:30 MST 2014:DEBUG:>> "[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "HTTP/1.1 401 Valid token not specified.[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "Cache-Control: private[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "Server: Microsoft-IIS/8.0[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "Access-Control-Allow-Origin: *[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "X-AspNet-Version: 4.0.30319[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "X-Powered-By: ASP.NET[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "Date: Tue, 21 Jan 2014 14:30:39 GMT[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "Content-Length: 0[\r][\n]"
Tue Jan 21 07:30:38 MST 2014:DEBUG:<< "[\r][\n]"

Contents of the error log:

Tue Jan 21 07:27:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-9023264614193250820.xml
Tue Jan 21 07:27:09 MST 2014:WARN:Failed to delete temporary project file; C:\Users\markpeterson\Documents\project-temp-4381663300414293605.xml
Tue Jan 21 07:27:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-2218735624394447239.xml
Tue Jan 21 07:27:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-7386040741024631583.xml
Tue Jan 21 07:27:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-8599433285016194300.xml
Tue Jan 21 07:27:09 MST 2014:WARN:Failed to delete temporary project file; C:\project-temp-7827789665221553361.xml
Tue Jan 21 07:32:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-3028374975021869069.xml
Tue Jan 21 07:32:09 MST 2014:WARN:Failed to delete temporary project file; C:\Users\markpeterson\Documents\project-temp-3932834926483649858.xml
Tue Jan 21 07:32:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-6392826536457569320.xml
Tue Jan 21 07:32:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-5977469322833857632.xml
Tue Jan 21 07:32:09 MST 2014:WARN:Failed to delete temporary project file; C:\Soap Backup\project-temp-7224675094973485687.xml
Tue Jan 21 07:32:09 MST 2014:WARN:Failed to delete temporary project file; C:\project-temp-3683107121750227572.xml.

Thanks,
Mark

Any ideas On this?

Hey Mark, sorry for the delayed reply.

I need to know how far you've gotten in the OAuth process. I assume you're using the Twitter sample project. Have you already:

1) Set up the required custom project-level properties? These are used by the script to sign the request.
2) Downloaded the signpost jars and put them in the bin/ext/ folder?

The project object in the script is the request's corresponding SoapUI project (ie the project where you have defined your OAuth properties). I'm not sure if that answers your question, so if it doesn't, please help me understand and I'll happily assist further.

Regards,
Arian
SmartBear Sweden

Ok I am revisiting this issue, I see that the latest version of SoapUIPro (5.1.1) contained a fix for the RequestFilter.filter.request event. So I ran a basic OAuth test and i was pleased to see the header appended to the request, however I note that I have a new error "Receiving response: HTTP/1.1 401 Invalid timestamp 0. Exceeds configured time to live 00:15:00."

So I did a side by side compare of the OAuth headers values:
The string produced by Soap is:
oauth_consumer_key="6E65A733-B50B-4BAF-A15F-XXXXXXXXXXXX", oauth_nonce="-3337028399705576308", oauth_signature="TMuDrjeiH0mab%2FPCUehZtBJ65WI%3D", oauth_signature_method="HMAC-SHA1", oauth_timestamp="1406739280", oauth_token="a166bbd7-3145-4c47-b0d3-dd0c707db047", oauth_version="1.0"

The string produced by Postman is:
oauth_consumer_key="6E65A733-B50B-4BAF-A15F-XXXXXXXXXXXX",oauth_token="ca2340d3-3af5-4c0a-990a-15e4cd8ca856",oauth_signature_method="HMAC-SHA1",oauth_timestamp="1406739431",oauth_nonce="TfZ051",oauth_version="1.0",oauth_signature="IbrcWa1G%2B1nWy%2BDtC9or6v7d4g8%3D"

Both strings have seemly valid values, and do contain a value for time stamp, but they do have two differences in format. The pattern of the data is different, and the soap string contains spaces after the comma prior to each new value. I don't know if that is the actual cause for the host failing to find the value for "timestamp" but i was wondering if there is a method of removing the spaces or altering the data format.

Thanks,
Mark

Hi,

Since you already have the string with the header values, you should be able do something like

new_headers = headers.replace(" ","")

to remove the spaces.


Regards,
Marcus
SmartBear Support