Objective-C Twitter 1.1 API仅限应用程序身份验证403禁止访问

Question

我正在尝试更新新的（1.1）Twitter API的iPhone应用程序。我想使用仅应用程序身份验证，以便应用程序的用户不需要自己的Twitter帐户。我创建了一个Twitter应用程序，并编写了消费者密钥＆amp;在尝试进行身份验证之前的秘密：

NSString *consumerKey = @"xxxxxxxxxxxx";
NSString *consumerSecret = @"yyyyyyyyyyyyyyyyyyyy";

NSString *consumerKeyRFC1738 = [consumerKey stringByAddingPercentEscapesUsingEncoding:
 NSASCIIStringEncoding];
NSString *consumerSecretRFC1738 = [consumerSecret stringByAddingPercentEscapesUsingEncoding:
                                   NSASCIIStringEncoding];

NSString *concatKeySecret = [[consumerKeyRFC1738 stringByAppendingString:@":"]    stringByAppendingString:consumerSecretRFC1738];

NSLog(@"concatKeySecret:%@", concatKeySecret);

NSString *concatKeySecretBase64 = [concatKeySecret base64EncodedString];

NSLog(@"concatKeySecretBase64:%@", concatKeySecretBase64);


NSMutableURLRequest *request = [NSMutableURLRequest
                                requestWithURL:[NSURL URLWithString:@"https://api.twitter.com/oauth2/token"]];

[request setHTTPMethod:@"POST"];
[request setValue:[@"Basic " stringByAppendingString:concatKeySecretBase64] forHTTPHeaderField:@"Authorization"];
[request setValue:@"application/x-www-form-urlencoded;charset=UTF-8" forHTTPHeaderField:@"Content-Type"];


NSString *str = @"grant-type=client_credentials";
NSData *httpBody = [str dataUsingEncoding:NSUTF8StringEncoding];

[request setHTTPBody:httpBody];

NSLog(@"Request:%@",request);

//NSURLConnection *connection = [[NSURLConnection alloc] initWithRequest:request delegate:self];

NSHTTPURLResponse *response;
[NSURLConnection sendSynchronousRequest: request returningResponse: &response error: nil];

if ([response respondsToSelector:@selector(allHeaderFields)]) {
    NSDictionary *dictionary = [response allHeaderFields];
    NSLog([dictionary description]);
    //NSLog(@"ETAG:%@",[dictionary valueForKey:@"ETag"]);
}

我收到的回复是403错误。我是否正确格式化了我的HTTP帖子？

{
"Cache-Control" = "no-cache, no-store, must-revalidate, pre-check=0, post-check=0";
"Content-Encoding" = gzip;
"Content-Length" = 118;
"Content-Type" = "application/json; charset=utf-8";
Date = "Tue, 30 Jul 2013 17:26:47 GMT";
Expires = "Tue, 31 Mar 1981 05:00:00 GMT";
"Last-Modified" = "Tue, 30 Jul 2013 17:26:47 GMT";
Pragma = "no-cache";
Server = tfe;
"Set-Cookie" = "_twitter_sess=BAh7CDoMY3NyZl9pZCIlYWEwY2Y2NzU2NmQ3MjFjMTAyZmY2ZGFlNjFiZWNj                                                                                                                                                                                                                                    0X1.67F4B01F90C18P-881MjQ6B2lkIiUzNmQ1YTE1ZDQxZTFiN2Q0MTFjNzY2MmI5YTE2NDVkYToPY3Jl                                                                                                                                                                                                                                         0X1.7FFFB87P-1043YXRlZF9hdGwrCMQunjBAAQ                                                                                                                                                                                                                                                      1371904                                                                                                                                                                                                                                                  -1776385004--7706e5d6c3e090acdab9a3c94d433e11eab2b48b; domain=.twitter.com; path=/; HttpOnly";
Status = "403 Forbidden";
"Strict-Transport-Security" = "max-age=631138519";
Vary = "Accept-Encoding";
"x-frame-options" = DENY;
"x-mid" = 62d49efa6db6ee537df4e330e351d93fbd0cf900;
"x-runtime" = "0.01460";
"x-transaction" = 49b51f5559838ae4;
"x-ua-compatible" = "IE=10,chrome=1";
"x-xss-protection" = "1; mode=block";
}

Answer 1

NSString *str = @"grant-type=client_credentials"; 

应该是

NSString *str = @"grant_type=client_credentials";

注意下划线，而不是连字符！