Skip to content


Subversion checkout URL

You can clone with
Download ZIP

Comparing changes

Choose two branches to see what's changed or to start a new pull request. If you need to, you can also compare across forks.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also compare across forks.
base fork: ciaranj/node-oauth
base: 0.9.0
head fork: ciaranj/node-oauth
compare: master
Checking mergeability… Don't worry, you can still create the pull request.
Commits on Feb 26, 2011
@neyric neyric Follow 302 redirects with "Location" header 15f06f2
@neyric neyric Sample express app which uses Google GData API 8050d82
Commits on Mar 11, 2011
@evnm evnm Fix typo in README. e9e8032
Commits on Apr 19, 2011
@ciaranj Added tests for 302 redirect functionality 9fea0b5
Commits on Apr 28, 2011
@thecolorblue thecolorblue Updated for express 2.0 and fixed an issue with session where it woul…
…d loose the functions of the prototype
Commits on May 05, 2011
@meltingice meltingice Added support for OAuth Echo 0158a78
@meltingice meltingice Updated README 333f2a3
Commits on May 08, 2011
@ciaranj Merge pull request #29 from evnm/master
Fix node.js/node-oauth mismatch in versioning disclaimer
Commits on May 09, 2011
@meltingice meltingice Refactored OAuthEcho object into oauth.js to remove lots of redundancy ed01a23
@meltingice meltingice Added signature test for OAuthEcho 50a7039
Commits on May 10, 2011
@ciaranj Merge branch 'master' of int…
…o meltingice-master

@ciaranj Some minor reformatting and 'standardisation' of the merged code
Also updating package.json to reflect Echo support
@ciaranj Merge pull request #39 from thecolorblue/master
Updated Example-gdata
Commits on Jun 23, 2011
@mansilladev mansilladev Match all 2xx response codes. c78a9ca
@ciaranj Inverting the branch logic for easier reading 3ed11c0
@ciaranj Add in specific test for supporting 200 responsecode and one for a 21…
…0 responsecode
@ciaranj Updating readme f981a7a
@ciaranj Merge branch 'http_success_response_widening' f261b9f
Commits on Jun 25, 2011
@KirillTemnov KirillTemnov fix content length for oauth 1.0 5f383ff
@ciaranj Adding test for character encoding / body length issue 7e2aa8c
@ciaranj Updating readme and bumping version number for future release d66ed8a
@ciaranj Merge branch 'merging_body_length_fix' cb6e4ea
Commits on Jun 29, 2011
@ciaranj Adding a configuration mechanism (that may not stay) to allow overrid…
…ing of the name of the access token used when requesting resources
Commits on Jul 08, 2011
@bdickason bdickason Added support and test coverage for following 301 redirects d8b5731
Commits on Jul 23, 2011
@ciaranj Bumping version number and crediting 8ba869f
Commits on Aug 15, 2011
@ciaranj Supports OAuth Providers that don't end connections neatly (Google!) 0643395
@ciaranj OAuth2 getOAuthAccessToken now POSTs rather than GET as per the spec …
@ciaranj uggh committed a console.log a2ac03b
Commits on Aug 16, 2011
@raoulmillais raoulmillais Added support for GET when requesting request tokens 1b4624c
@ciaranj Documented behaviour of getOAuthRequestToken 49c83f1
Commits on Aug 17, 2011
@raoulmillais raoulmillais Reimplemented configurable http method for token requests using setCl…
@ciaranj Tidying up a method comment 85805b6
@ciaranj Bumping version 6b4dbcd
Commits on Aug 23, 2011
@ciaranj Fixes Issue #62 (adds another misbehaving host) 3c45927
Commits on Aug 30, 2011
@ciaranj Make the package more external test runner friendly 99e6259
Commits on Sep 20, 2011
@btspoony btspoony callback results when getAccessToken 2e1f9f9
Commits on Sep 24, 2011
@dmathieu dmathieu don't send the request using https if the uri is http 3262090
Commits on Oct 20, 2011
@fjakobs fjakobs request variable leaked into the global scope 9b4703a
@ciaranj Merge pull request #73 from fjakobs/patch-1
request variable leaked into the global scope
Commits on Oct 26, 2011
@pnegri pnegri [ #Issue 75 ] Fixing Live Protocol 302 Resources 6404f6e
Commits on Oct 27, 2011
@ciaranj Merge pull request #76 from pnegri/live_protocol
[ #Issue 75 ] Fixing Live Protocol 302 Resources
Commits on Nov 28, 2011
@raoulmillais raoulmillais Update references sys -> util in examples to remove warnings in newer…
… versions of node
@ciaranj Merge pull request #82 from raoulmillais/master
Lose the warning messages when you run the examples in node >0.6
Commits on Mar 02, 2012
@ciaranj Bumping to version 0.9.6 d300b4e
Commits on Mar 14, 2012
@lukebaker lukebaker Add support for refreshing an access token e1a8422
Commits on Apr 08, 2012
@ciaranj Addresses issue #93, adds *explicit* licensing information
This library has always been MIT licensed (see issue #5 for the earliest
question on this.)  This commit merely adds an explicit complete licence file in
the root of the sourcetree, and adds a line to the package.json file
(thus coupling the sourcecode to github *sigh* )
Commits on Apr 24, 2012
@ciaranj Issue #93 removing outdated debian folder to ease debian package main…
…tainer's lives
@ciaranj Merge commit '2e1f9f9' into oauth2_results_callback e4cc471
@ciaranj Adding test for passing back the extra data to the OAuth2 getOAuthAcc…
…essToken caller
@ciaranj Merge branch 'oauth2_results_callback' into merge_mayhem 1359d69
@ciaranj Merge remote-tracking branch 'dmathieu/fix_http' into not_require_http
@ciaranj Fix global scope leak, and amend decision on when to use https or htt…
…p libraries
@ciaranj Acknowledge contributor 6b9323f
@ciaranj Merge branch 'not_require_http' into merge_mayhem 5d0072d
@ciaranj Merge remote-tracking branch 'lukebaker/patch-1' into add_support_for…
@ciaranj Adding a test for the refresh_token grant type support c631a31
@ciaranj Acknowledging contributor ee4dbd2
@ciaranj Merge branch 'add_support_for_oauth2_token_refresh' into merge_mayhem 80d6909
@ciaranj Update documentation readme style 21bee6b
@ciaranj Updating version to 0.9.7 03a82b3
Commits on Jun 07, 2012
Joe Rozner fixed issue #64 w/ tests d8d1e0b
Commits on Jun 11, 2012
@GCheung55 GCheung55 Update to make sure hostName exists before trying to act on it. Other…
…wise it will throw an error.
Commits on Jun 29, 2012
Greg Jacobson Added installation instructions
There are number of oauth solutions for node.js and it is
helpful to provide the official installation instructions
in the Readme file.  Installation instructions can be a little
confusing for this module because the github repository name
is node-oauth and there is a different  node.js oauth
solution that isntalls via npm with the command node-oauth.
Since this solution installs with oauth official
instructions may be helpful to some developers.
@ciaranj Merge pull request #103 from gregjacobson/master
Add a section in the Readme for installation instructions
Commits on Jul 06, 2012
@problame problame Added an option to change the OAuth parameter seperator 5fab3c5
Commits on Jul 28, 2012
@ciaranj Merge remote-tracking branch 'jrozner/master' 92aa1cf
@ciaranj Remove excess double URL encoding introduced by fixes for issue #64 b03f6ae
@ciaranj The fix for Issue #64 implies that the test server I've been using is…
… wrong
@ciaranj Merge remote-tracking branch 'chrischw/master' d43a712
@ciaranj Add a test for Issue #105 b103b70
@ciaranj Merge pull request #101 from GCheung55/patch-1
Update to make sure hostName exists before trying to act on it
@ciaranj Bump version to 0.9.8 and update release notes bd90c0f
@ciaranj Oops, my wasn't consistent with the other lines a846c28
Commits on Sep 28, 2012
@rolandboon rolandboon Update lib/oauth.js
Fix the mismatch between the output of querystring.stringify() and this._encodeData(). 
Commits on Nov 21, 2012
@yaru22 yaru22 Add in Authorization Header and support extra headers by default. efbce5b
Commits on Nov 25, 2012
@ciaranj Merge pull request #116 from yaru22/master
Adding post_headers parameter to getOAuthAccessToken method.
@ciaranj Merge pull request #114 from rolandboon/master
Fix requests containing !'()* in POST data
Commits on Dec 20, 2012
Andreas Knecht Added RSA-SHA1 signature method based on the fork from https://github…
….com/wraithgar/node-oauth.  Added test that uses the RSA-SHA1 method and verifies the signature using a public key.
Commits on Mar 01, 2013
@ciaranj Upping version to 0.9.9 08fcb68
Commits on Mar 05, 2013
@jfromaniello jfromaniello fix #129 Setting token in query params and Authorization header viola…
…tes spec
@ciaranj Fixes Issue #125 - Abusing externally passed in data structure
Also had to re-jig the test, as it turns out the contributor-supplied test
for this work didn't *actually* test anything :(
@ciaranj Fixes Issue #129
Not ideal, but effectively reverts the default behaviour of the library to how 0.9.8 worked,
that is it passes the access_token as a query parameter to the server.

To allow the utility 'get' method to use an Authorization header *instead* then you need to
explicitly enable this behaviour by using the method :

  var oa= new Oauth(...);

Note this can/should be used in conjunction with the other utility method:


The default value for the Authorization header is 'Bearer'

If you're building your own requests using oa._request then there is a new exported

@ciaranj Bumps package version to 0.9.10 a295a66
@ciaranj Merge remote-tracking branch 'jfromaniello/bug129' 8be23c3
@ciaranj Added an extra test, and checked realHeaders to catch any dodgy custo…
…m ones
@ciaranj Updated contributor list 37bf108
Commits on Mar 22, 2013
@azat-co azat-co Update
added test/example to get bearer/access_token from Twitter using consumer key+secret and OAuth2
@azat-co azat-co Update
changed to user one require 
@azat-co azat-co Update 11ed594
@azat-co azat-co Update
added OAuth 1.0 example
@azat-co azat-co Update
quote mismatch
Commits on Apr 12, 2013
@pjvds pjvds Add failing test for 301 redirect for followRedirect client option 6e215f9
@pjvds pjvds Add test cases for 302 response status 04eb6fa
Commits on May 05, 2013
@pjvds pjvds Add followRedirect client option to turn auto follow on or off d4143a6
Commits on May 06, 2013
@pjvds pjvds Remove trailing whitespaces f245901
@pjvds pjvds Add test to proof default value for followRedirects is true 3584b43
Commits on May 07, 2013
@AndrewMartens AndrewMartens Set default User-Agent if not otherwise specified in customHeaders a742d83
Commits on May 25, 2013
@shihongzhi shihongzhi the word "install" is spelling error 06a4c75
Commits on May 31, 2013
@evanp evanp Allow passing binary data to PUT or POST as a Buffer
Allow the post_body argument to a PUT or POST to be a Buffer. This will
pass the data directly to the request in binary form.

Closes #144.
Commits on Jul 08, 2013
@joserobleda joserobleda prevent inherited properties using hasOwnProperty 89f7972
Commits on Jul 27, 2013
@bradgignac bradgignac Remove type query parameter from OAuth2 requests.
While the type parameter was required in older versions of the OAuth2
specification, it was removed in version 8. Currently, this breaks OAuth2
against the Dropbox API. Closes #127.
Commits on Oct 15, 2013
@broox broox Write the post_body to OAuth2 PUT requests e599d29
Commits on Jan 04, 2014
@ciaranj Merge pull request #154 from bradgignac/remove-type-parameter
Remove type query parameter from OAuth2 requests.
@ciaranj Merge pull request #140 from AndrewMartens/master
Set default User-Agent if not otherwise specified in customHeaders
@ciaranj Merge pull request #138 from pjvds/no-follow-option
Don't follow redirects opt-out
@ciaranj Merge pull request #121 from knechtandreas/master
Add RSA-SHA1 support
@ciaranj Bumping version to 0.9.11 171e668
Commits on Jan 09, 2014
@psanchezdl psanchezdl Koding button
Sorry about that!
Commits on Mar 24, 2014
josh coffman renamed 'OAuth' -> 'oauth' to be linux friendly in the readme 48033df
@ciaranj Merge pull request #186 from rebootd/master
renamed 'OAuth' -> 'oauth' to be linux friendly in the readme
Commits on Apr 02, 2014
Don Neufeld Added protection against multiple callback invocation on error path 54b9584
@ciaranj Merge pull request #189 from dnf/master
Added protection against multiple callback invocation on error path
Commits on Apr 17, 2014
@tedgoddard tedgoddard support for use_strict 9b538ba
Commits on May 13, 2014
@matzegebbe matzegebbe Update
@ciaranj Merge pull request #197 from matzegebbe/patch-1
Commits on May 21, 2014
@ciaranj Merge pull request #191 from tedgoddard/patch-1
support for use_strict
@ciaranj Merge pull request #171 from psanchezdl/patch-2
Koding button
@ciaranj Provides a test-case for #160 1eda281
@ciaranj Merge branch 'broox-oauth2_put'
@ciaranj Provides a test case for #144 ff2210a
@ciaranj Merge remote-tracking branch 'origin/master' into evanp-issue144 4e351fe
@ciaranj Merge pull request #150 from joserobleda/master
Use hasOwnProperty to prevent erros
@ciaranj Merge pull request #142 from shihongzhi/patch-1
the word "install" is spelling error
Commits on Jun 20, 2014
@prometheansacrifice prometheansacrifice Example code for github 467234d
@ciaranj Merge pull request #200 from prometheansacrifice/master
Example code for github
Commits on Aug 08, 2014
@zedgu zedgu Fix #196 #207
  [remove] https never used
  [add] https url testing
  [remove] creds never used
@ciaranj Merge pull request #211 from zedgu/master
Fix #196 #207 (Removes some un-needed calls to tls/crypto)
Commits on Oct 08, 2014
@jbaumbach jbaumbach Fix headers variable in wrong scope in get() 9419b00
@ciaranj Merge pull request #224 from jbaumbach/master
Fix headers variable in wrong scope in get()
Commits on Dec 18, 2014
@ciaranj Repair missing commit(s) a4b96af
Commits on Feb 04, 2015
@coolaj86 coolaj86 remove dead code (bogus call to createCredentials) 763d5ec
Commits on May 15, 2015
@ciaranj Merge pull request #240 from coolaj86/patch-2
remove dead code (bogus call to createCredentials)
@ciaranj Bumping version to 0.9.13 de3a067