The Perl Toolchain Summit 2025 Needs You: You can help 🙏 Learn more

 / 
LWP-Authen-OAuth-1.02
River stage one • 2 direct dependents • 2 total dependents
/ LWP::Authen::OAuth

NAME

LWP::Authen::OAuth - generate signed OAuth requests

SYNOPSIS


            

              
              
require LWP::Authen::OAuth;

Google


            

              
              
# Google uses 'anonymous' for unregistered Web/offline applications or the
# domain name for registered Web applications
my $ua = LWP::Authen::OAuth->new(
        oauth_consumer_secret => "anonymous",
);
# request a 'request' token
my $r = $ua->post( "https://www.google.com/accounts/OAuthGetRequestToken",
        [
                oauth_consumer_key => 'anonymous',
                oauth_callback => 'http://example.net/oauth',
                xoauth_displayname => 'Example Application',
                scope => 'https://docs.google.com/feeds/',
        ]
);
die $r->as_string if $r->is_error;
# update the token secret from the HTTP response
$ua->oauth_update_from_response( $r );
# open a browser for the user 
# data are returned as form-encoded
my $uri = URI->new( 'http:' );
$uri->query( $r->content );
my %oauth_data = $uri->query_form;
# Direct the user to here to grant you access:
# https://www.google.com/accounts/OAuthAuthorizeToken?
#       oauth_token=$oauth_data{oauth_token}\n";
# turn the 'request' token into an 'access' token with the verifier
# returned by google
$r = $ua->post( "https://www.google.com/accounts/OAuthGetAccessToken", [
        oauth_consumer_key => 'anonymous',
        oauth_token => $oauth_data{oauth_token},
        oauth_verifier => $oauth_verifier,
]);
# update the token secret from the HTTP response
$ua->oauth_update_from_response( $r );
# now use the $ua to perform whatever actions you want

Twitter

Sending status updates to a single account is quite easy if you create an application. The oauth_consumer_key and oauth_consumer_secret come from the 'Application Details' page and the oauth_token and oauth_token_secret from the 'My Access Token' page.


            

              
              
my $ua = LWP::Authen::OAuth->new(
        oauth_consumer_key => 'xxx1',
        oauth_consumer_secret => 'xxx2',
        oauth_token => 'yyy1',
        oauth_token_secret => 'yyy2',
);
$ua->post( 'http://api.twitter.com/1/statuses/update.json', [
        status => 'Posted this using LWP::Authen::OAuth!'
]);

DESCRIPTION

This module provides a sub-class of LWP::UserAgent that generates OAuth 1.0 signed requests. You should familiarise yourself with OAuth at http://oauth.net/.

This module only supports HMAC_SHA1 signing.

OAuth nonces are generated using the Perl random number generator. To set a nonce manually define 'oauth_nonce' in your requests via a CGI parameter or the Authorization header - see the OAuth documentation.

METHODS

$ua = LWP::Authen::OAuth->new( ... )

Takes the same options as "new" in LWP::UserAgent plus optionally:


            

              
              
oauth_consumer_key
oauth_consumer_secret
oauth_token
oauth_token_secret

Most services will require some or all of these to be set even if it's just 'anonymous'.

$ua->oauth_update_from_response( $r )

Update the oauth_token and oauth_token_secret from an HTTP::Response object returned by a previous request e.g. when converting a request token into an access token.

$key = $ua->oauth_consumer_key( [ KEY ] )

Get and optionally set the consumer key.

$secret = $ua->oauth_consumer_secret( [ SECRET ] )

Get and optionally set the consumer secret.

$token = $ua->oauth_token( [ TOKEN ] )

Get and optionally set the oauth token.

$secret = $ua->oauth_token_secret( [ SECRET ] )

Get and optionally set the oauth token secret.

SEE ALSO

LWP::UserAgent, MIME::Base64, Digest::SHA, URI, URI::Escape

Rationale

I think the complexity in OAuth is in the parameter normalisation and message signing. What this module does is to hide that complexity without replicating the higher-level protocol chatter.

In Net::OAuth:


            

              
              
$r = Net::OAuth->request('request token')->new(
        consumer_key => 'xxx',
        request_url => 'https://photos.example.net/request_token',
        callback => 'http://printer.example.com/request_token_ready',
        ...
        extra_params {
                scope => 'global',
        }
);
$r->sign;
$res = $ua->request(POST $r->to_url);
$res = Net::OAuth->response('request token')
        ->from_post_body($res->content);
... etc

In LWP::Authen::OAuth:


            

              
              
$ua = LWP::Authen::OAuth->new(
        oauth_consumer_key => 'xxx'
);
$res = $ua->post( 'https://photos.example.net/request_token', [
        oauth_callback => 'http://printer.example.com/request_token_ready',
        ...
        scope => 'global',
]);
$ua->oauth_update_from_response( $res );
... etc

Net::OAuth, OAuth::Lite.

AUTHOR

Timothy D Brody <tdb2@ecs.soton.ac.uk>

Copyright 2011 University of Southampton, UK

This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself