Title: Pass appsecret_proof as a query string parameter as it maybe be ignored if passed in as a body parameter · Issue #1073 · scribejava/scribejava · GitHub
Open Graph Title: Pass appsecret_proof as a query string parameter as it maybe be ignored if passed in as a body parameter · Issue #1073 · scribejava/scribejava
X Title: Pass appsecret_proof as a query string parameter as it maybe be ignored if passed in as a body parameter · Issue #1073 · scribejava/scribejava
Description: Specifically for some POST requests in current implementation we get API calls from the server require an appsecret_proof argument response. Some POST endpoints will send the HTTP body with form encoded data, which would mean the body pa...
Open Graph Description: Specifically for some POST requests in current implementation we get API calls from the server require an appsecret_proof argument response. Some POST endpoints will send the HTTP body with form en...
X Description: Specifically for some POST requests in current implementation we get API calls from the server require an appsecret_proof argument response. Some POST endpoints will send the HTTP body with form en...
Opengraph URL: https://github.com/scribejava/scribejava/issues/1073
X: @github
Domain: patch-diff.githubusercontent.com
{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Pass appsecret_proof as a query string parameter as it maybe be ignored if passed in as a body parameter","articleBody":"Specifically for some POST requests in current implementation we get API calls from the server require an appsecret_proof argument response. Some POST endpoints will send the HTTP body with form encoded data, which would mean the body parameters are ignored.\r\n\r\nTangibly related it may be worth also implementing it following https://developers.facebook.com/docs/facebook-login/security/#proof (using timestamp in proof computation is not enforced but recommended by FB)\r\n\r\n // See https://developers.facebook.com/docs/facebook-login/security/#proof\r\n var appsecretTime = TimeUnit.MILLISECONDS.toSeconds(System.currentTimeMillis());\r\n final String appsecretProofPlain = accessToken + \"|\" + appsecretTime;\r\n for (byte b : mac.doFinal(appsecretProofPlain.getBytes())) {\r\n appsecretProof.format(\"%02x\", b);\r\n }\r\n request.addQuerystringParameter(\"appsecret_proof\", appsecretProof.toString());\r\n request.addQuerystringParameter(\"appsecret_time\", String.valueOf(appsecretTime));\r\n\r\n\r\n\r\n","author":{"url":"https://github.com/kullfar","@type":"Person","name":"kullfar"},"datePublished":"2024-09-29T13:47:45.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":0},"url":"https://github.com/1073/scribejava/issues/1073"}| route-pattern | /_view_fragments/issues/show/:user_id/:repository/:id/issue_layout(.:format) |
| route-controller | voltron_issues_fragments |
| route-action | issue_layout |
| fetch-nonce | v2:d9db12d0-f198-9f0e-b2f2-ae7a6546294b |
| current-catalog-service-hash | 81bb79d38c15960b92d99bca9288a9108c7a47b18f2423d0f6438c5b7bcd2114 |
| request-id | 93BE:11F8A0:24C2574:32CC3DD:69729772 |
| html-safe-nonce | 8d3534e54a730418162c70eb984b5010fa5dd5e8e1336e934d3994526d03f8ad |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI5M0JFOjExRjhBMDoyNEMyNTc0OjMyQ0MzREQ6Njk3Mjk3NzIiLCJ2aXNpdG9yX2lkIjoiMjQ1NjM5MzI3MTI0ODg1Mjg1MCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | 95158699cd9d16bc64d670f44515c139ebcd0082d91149e2c9eff6bf683f1c66 |
| hovercard-subject-tag | issue:2554945471 |
| github-keyboard-shortcuts | repository,issues,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/_view_fragments/issues/show/scribejava/scribejava/1073/issue_layout |
| twitter:image | https://opengraph.githubassets.com/f8aab5f046ef4fa7e0b9337164987bacd3d670b1c0ae623cdb3a42b3fcd5164f/scribejava/scribejava/issues/1073 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/f8aab5f046ef4fa7e0b9337164987bacd3d670b1c0ae623cdb3a42b3fcd5164f/scribejava/scribejava/issues/1073 |
| og:image:alt | Specifically for some POST requests in current implementation we get API calls from the server require an appsecret_proof argument response. Some POST endpoints will send the HTTP body with form en... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | kullfar |
| hostname | github.com |
| expected-hostname | github.com |
| None | 72bb1c46bb1ebdc0dc83a0a57b64c3b4d668c125d1125d94898213a4c9db8da2 |
| turbo-cache-control | no-preview |
| go-import | github.com/scribejava/scribejava git https://github.com/scribejava/scribejava.git |
| octolytics-dimension-user_id | 15140551 |
| octolytics-dimension-user_login | scribejava |
| octolytics-dimension-repository_id | 889932 |
| octolytics-dimension-repository_nwo | scribejava/scribejava |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 889932 |
| octolytics-dimension-repository_network_root_nwo | scribejava/scribejava |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 7b2326416cb9f2fa4ab7b6ede33ad46d0dd431a1 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width
