如何通过OAuth将Twitter消息发布到经过身份验证的用户的时间线

时间:2012-12-03 13:01:21

标签: c# oauth asp.net-mvc-4 twitter-oauth

我一直在与Twitter API搏斗几天,但我无法向经过身份验证的用户的时间轴发布消息。我有一个ASP.NET MVC 4应用程序,通过Twitter签署用户并保存从登录过程返回的访问令牌。那部分工作正常。我可以在经过身份验证的用户的Twitter帐户中看到我的应用程序具有读写权限。

然后我使用该访问令牌以及与我的Twitter应用程序关联的消费者密钥,消费者秘密和oauth令牌秘密,以发布到用户的时间线。我每次都会收到401未经授权的错误。我尝试使用1.1 API和1 API,结果相同。

大部分代码来自Gary Short的文章:http://garyshortblog.wordpress.com/2011/02/11/a-twitter-oauth-example-in-c/

这是我到目前为止所得到的。如果有人能够发现任何我错过的线索,我将非常感激。

    public async Task<bool> Push(TwitterMessage twitterMessage)
    {
        const string updateApi = "http://api.twitter.com/1/statuses/update.json";
        const string oauthConsumerKey = "<consumerKey>";
        const string consumerSecret = "<consumerSecret>";
        const string oauthSignatureMethod = "HMAC-SHA1";
        const string oauthTokenSecret = "<tokenSecret>";
        var signingKey = string.Format("{0}&{1}", consumerSecret.Escaped(), oauthTokenSecret.Escaped());

        var postBody = "status=" + Uri.EscapeDataString(twitterMessage.MessageContent);
        var oauthNonce = Convert.ToBase64String(new ASCIIEncoding().GetBytes(DateTime.Now.Ticks.ToString()));
        var oauthToken = "<authenticatedUserToken>";
        var timeSpan = DateTime.UtcNow - new DateTime(1970, 1, 1, 0, 0, 0, 0);
        var oauthTimestamp = Convert.ToInt64(timeSpan.TotalSeconds).ToString();

        var message = string.Format("POST {0}?{1} HTTP/1.1", updateApi, postBody.Escaped());
        var hasher = new HMACSHA1(new ASCIIEncoding().GetBytes(signingKey));
        var signatureString = Convert.ToBase64String(hasher.ComputeHash(new ASCIIEncoding().GetBytes(message)));

        ServicePointManager.Expect100Continue = false;

        var request = (HttpWebRequest)WebRequest.Create(updateApi);
        request.KeepAlive = false;

        var authorisationBuilder = new StringBuilder();
        authorisationBuilder.Append("OAuth ");
        authorisationBuilder.AppendFormat("oauth_consumer_key=\"{0}\",", oauthConsumerKey.Escaped());
        authorisationBuilder.AppendFormat("oauth_signature_method=\"{0}\",", oauthSignatureMethod.Escaped());
        authorisationBuilder.AppendFormat("oauth_timestamp=\"{0}\",", oauthTimestamp.Escaped());
        authorisationBuilder.AppendFormat("oauth_nonce=\"{0}\",", oauthNonce.Escaped());
        authorisationBuilder.AppendFormat("oauth_token=\"{0}\",", oauthToken.Escaped());
        authorisationBuilder.AppendFormat("oauth_signature=\"{0}\"", signatureString.Escaped());
        var authorisation = authorisationBuilder.ToString();
        request.Headers.Add("Authorization", authorisation);

        request.Method = "POST";
        request.ContentType = "application/x-www-form-urlencoded";
        using (var stream = await request.GetRequestStreamAsync())
        {
            var bodyBytes = new ASCIIEncoding().GetBytes(postBody);
            stream.Write(bodyBytes, 0, bodyBytes.Length);
        }

        //Allow us a reasonable timeout in case Twitter's busy
        request.Timeout = 3 * 60 * 1000;

        try
        {
            var response = await request.GetResponseAsync() as HttpWebResponse;
            return true;
        }
        catch (WebException)
        {
            return false;
        } 
    }

    public static string Escaped(this string input)
    {
        return Uri.EscapeDataString(input);
    }

更新查看此SO post,我似乎无法使用DotNetOpenAuth Twitter客户端进行授权,而我一直在这样做。建议是扩展twitter消费者类而不是执行授权,这将允许我检索用户的令牌秘密(我认为我的拼图中缺少的一部分)。当我开始工作时,会发布另一个更新。

2 个答案:

答案 0 :(得分:0)

所以问题是DotNetOpenAuth目前的问题。对于Twitter身份验证,DotNetOpenAuth客户端不允许完整的授权流程(需要发布到用户的时间线)。仅从初始握手中检索访问令牌,而不是访问令牌秘密。我使用的是与我的Twitter应用程序关联的访问令牌密钥,而不是正在登录的Twitter用户,因此授权每次都失败。

更新:我终于使用了Daniel Crenna's Tweetsharp库,这使代码比编写我自己的API包装器更简单:

public async Task<bool> Push(TwitterAccount account)
{
    var twitterService = new TwitterService(consumerKey, consumerSecret);
    twitterService.AuthenticateWith(account.AccessToken, account.AccessTokenSecret);
    var options = new SendTweetOptions {Status = string.Format("{0} {1}", account.Message.MessageContent, account.Message.ShortLink)};
    var status = twitterService.SendTweet(options);
    return status != null;
}

答案 1 :(得分:0)

检查此代码和链接/文章简单易行:

protected void btnTweet_Click(object sender, EventArgs e)
{
 string oauthAccessToken = Session["twtoken"].ToString();
 string oauthAccessTokenSecret = Session["twsecret"].ToString();

 OAuthHelper oauthhelper = new OAuthHelper();
 oauthhelper.TweetOnBehalfOf(oauthAccessToken, oauthAccessTokenSecret, txtTweet.Text);

 if (string.IsNullOrEmpty(oauthhelper.oauth_error))
      Response.Write("Twit Posted Successfully");
 else
      Response.Write(oauthhelper.oauth_error);
}

了解更多如何获取访问令牌和密钥以及下载OAuthHelper和OAuthUtility类以下链接 -

How to post tweet on behalf of an user from asp.net using oauth authentication

Login with twitter using oauth authentication in asp.net and get access token, screen name and userid

相关问题
最新问题