Skip to content


Subversion checkout URL

You can clone with
Download ZIP

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also compare across forks.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also compare across forks.
base fork: idan/oauthlib
head fork: dmckeone/oauthlib
compare: master
Checking mergeability… Don’t worry, you can still create the pull request.
  • 1 commit
  • 2 files changed
  • 0 commit comments
  • 1 contributor
Commits on Apr 26, 2013
David McKeone Move the removal of oauth_signature and realm arguments into normaliz…
…e parameters, as specified by RFC5849, section
3  oauthlib/oauth1/rfc5849/
@@ -1047,8 +1047,7 @@ def verify_request(self, uri, http_method='GET', body=None,
# Parameters to Client depend on signature method which may vary
# for each request. Note that HMAC-SHA1 and PLAINTEXT share parameters
- request.params = filter(lambda x: x[0] not in ("oauth_signature", "realm"), params)
+ request.params = params
# ---- RSA Signature verification ----
if request.signature_method == SIGNATURE_RSA:
6 oauthlib/oauth1/rfc5849/
@@ -370,11 +370,15 @@ def normalize_parameters(params):
# .. _`Section`:
+ # - The header's content is parsed into a list of name/value pairs excluding the "realm" parameter if present.
+ # - The "oauth_signature" parameter MUST be excluded from the signature base string if present.
+ key_values = [(k, v) for k, v in params if k not in ("realm", "oauth_signature")]
# 1. First, the name and value of each parameter are encoded
# (`Section 3.6`_).
# .. _`Section 3.6`:
- key_values = [(utils.escape(k), utils.escape(v)) for k, v in params]
+ key_values = [(utils.escape(k), utils.escape(v)) for k, v in key_values]
# 2. The parameters are sorted by name, using ascending byte value
# ordering. If two or more parameters share the same name, they

No commit comments for this range

Something went wrong with that request. Please try again.