Comments on: AtomPub + OAuth for Wordpress! http://singpolyma.net/2008/05/atompub-oauth-for-wordpress/ Sat, 06 Sep 2008 23:09:37 +0000 http://wordpress.org/?v=2.5.1 By: Stephen Paul Weber http://singpolyma.net/2008/05/atompub-oauth-for-wordpress/#comment-106047 Stephen Paul Weber Tue, 30 Nov 1999 00:00:00 +0000 http://singpolyma.net/?p=335#comment-106047 @Zach are you getting to the "Authorize" step correctly? Correct flow if this all works should be: 1) Click button on test script 2) Click "Ok" to authorize key on Wordpress site (may have to log in first) 3) Get success message. Instead you are getting a 401? This is rather unusual... that means that the OAuth plugin is not correctly running before the rest - or that it is not looking in the right place. Do you have the lastest SVN version of wp-oauth and wp-xrds-simple installed and activated? @Zach are you getting to the "Authorize" step correctly? Correct flow if this all works should be:

1) Click button on test script
2) Click "Ok" to authorize key on Wordpress site (may have to log in first)
3) Get success message.

Instead you are getting a 401? This is rather unusual… that means that the OAuth plugin is not correctly running before the rest - or that it is not looking in the right place. Do you have the lastest SVN version of wp-oauth and wp-xrds-simple installed and activated?

]]> By: Zach Blank http://singpolyma.net/2008/05/atompub-oauth-for-wordpress/#comment-102356 Zach Blank Tue, 30 Nov 1999 00:00:00 +0000 http://singpolyma.net/?p=335#comment-102356 Hi Singpolyma, after looking over all of the comments and playing with this myself i receive the following after running wp_app.php: http://dotspot.zachblank.com/wp-app.php/posts?oauth_version=1.0&oauth_nonce=d4eae249bdc4f4dcc8fb02f22418d3ac&oauth_timestamp=1217184038&oauth_consumer_key=DUMMYKEY&oauth_token=d1e23d9aff528d994ddb7b6be48f12facb06c278&oauth_signature_method=HMAC-SHA1&oauth_signature=puMhdg4mu4VkRjENQ%2BH4YoflxDA%3D string(610) "HTTP/1.1 Credentials required. Date: Sun, 27 Jul 2008 18:40:38 GMT Server: Apache/2.0.54 X-Powered-By: PHP/5.2.6 Expires: Wed, 11 Jan 1984 05:00:00 GMT Cache-Control: no-cache, must-revalidate, max-age=0 Pragma: no-cache WWW-Authenticate: Basic realm="WordPress Atom Protocol" Last-Modified: Sun, 27 Jul 2008 18:40:39 GMT Vary: Accept-Encoding Transfer-Encoding: chunked Content-Type: text/html 401 Unauthorized 401 Unauthorized Credentials required. " Can you see what the issue is here? seems like it is working BUT 401... how do i provide credentials if they are required? Thank You!!! Hi Singpolyma,

after looking over all of the comments and playing with this myself i receive the following after running wp_app.php:

http://dotspot.zachblank.com/wp-app.php/posts?oauth_version=1.0&oauth_nonce=d4eae249bdc4f4dcc8fb02f22418d3ac&oauth_timestamp=1217184038&oauth_consumer_key=DUMMYKEY&oauth_token=d1e23d9aff528d994ddb7b6be48f12facb06c278&oauth_signature_method=HMAC-SHA1&oauth_signature=puMhdg4mu4VkRjENQ%2BH4YoflxDA%3D

string(610) "HTTP/1.1 Credentials required.
Date: Sun, 27 Jul 2008 18:40:38 GMT
Server: Apache/2.0.54
X-Powered-By: PHP/5.2.6
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
WWW-Authenticate: Basic realm="WordPress Atom Protocol"
Last-Modified: Sun, 27 Jul 2008 18:40:39 GMT
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html

401 Unauthorized

401 Unauthorized
Credentials required.

"

Can you see what the issue is here? seems like it is working BUT 401… how do i provide credentials if they are required?

Thank You!!!

]]> By: Stephen Paul Weber http://singpolyma.net/2008/05/atompub-oauth-for-wordpress/#comment-93186 Stephen Paul Weber Tue, 30 Nov 1999 00:00:00 +0000 http://singpolyma.net/?p=335#comment-93186 @Ming (1) wp_app.php is just a test script - not surprising you had to make some changes. (2&3) Might make sense to submit reports of some kind to WordPress, since those are requirements for WordPress AtomPub and not my plugin. @Ming (1) wp_app.php is just a test script - not surprising you had to make some changes. (2&3) Might make sense to submit reports of some kind to WordPress, since those are requirements for WordPress AtomPub and not my plugin.

]]> By: Ming http://singpolyma.net/2008/05/atompub-oauth-for-wordpress/#comment-93136 Ming Tue, 30 Nov 1999 00:00:00 +0000 http://singpolyma.net/?p=335#comment-93136 I finally run through your code after making some minor changes: 1) In wp_app.php, I had to hard-code the callback-url because otherwise the base_url is empty. //$callback_url = "$base_url/wp_app.php?action=access"; 2) At first SCRIPT_URI was undefined in my server setup. This was fixed by configuring virtualhost and enabling RewriteEngine module. 3) Finally, this thing got work after commenting out one line in wp-app.php: //$_SERVER['PATH_INFO'] = preg_replace( '/.*\/wp-app\.php/', '', $_SERVER['REQUEST_URI'] ); Then I was able to post on my Wordpress! Thanks for the work. I finally run through your code after making some minor changes:
1) In wp_app.php, I had to hard-code the callback-url because otherwise the base_url is empty.
//$callback_url = "$base_url/wp_app.php?action=access";
2) At first SCRIPT_URI was undefined in my server setup. This was fixed by configuring virtualhost and enabling RewriteEngine module.
3) Finally, this thing got work after commenting out one line in wp-app.php:
//$_SERVER['PATH_INFO'] = preg_replace( '/.*\/wp-app\.php/', ", $_SERVER['REQUEST_URI'] );
Then I was able to post on my Wordpress! Thanks for the work.

]]> By: Ming http://singpolyma.net/2008/05/atompub-oauth-for-wordpress/#comment-90409 Ming Tue, 30 Nov 1999 00:00:00 +0000 http://singpolyma.net/?p=335#comment-90409 Thank you very much. I reapplied the patch manually after I found that the patch command did not work as expected. Now it looks like this in file wp-app.php: global $always_authenticate; if( !empty( $_SERVER['ORIG_PATH_INFO'] ) ) $path = $_SERVER['ORIG_PATH_INFO']; else $path = $_SERVER['PATH_INFO']; $method = $_SERVER['REQUEST_METHOD']; log_app('REQUEST',"$method $path\n================"); This is the dumped $SERVER (no PATH_INFO?): ["SERVER_SOFTWARE"]=> string(61) "Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.1 with Suhosin-Patch" ["SERVER_NAME"]=> string(9) "localhost" ["SERVER_ADDR"]=> string(9) "127.0.0.1" ["SERVER_PORT"]=> string(2) "80" ["REMOTE_ADDR"]=> string(9) "127.0.0.1" ["DOCUMENT_ROOT"]=> string(9) "/var/www/" ["SERVER_ADMIN"]=> string(19) "webmaster@localhost" ["SCRIPT_FILENAME"]=> string(29) "/var/www/oauthtest/wp_app.php" ["REMOTE_PORT"]=> string(5) "49426" ["GATEWAY_INTERFACE"]=> string(7) "CGI/1.1" ["SERVER_PROTOCOL"]=> string(8) "HTTP/1.1" ["REQUEST_METHOD"]=> string(3) "GET" ["QUERY_STRING"]=> string(13) "action=access" ["REQUEST_URI"]=> string(35) "/oauthtest/wp_app.php?action=access" ["SCRIPT_NAME"]=> string(21) "/oauthtest/wp_app.php" ["PHP_SELF"]=> string(21) "/oauthtest/wp_app.php" ["REQUEST_TIME"]=> int(1214026621) ["argv"]=> array(1) { [0]=> string(13) "action=access" } ["argc"]=> int(1) } This is the description about how the error still happened (wp_app.php in another folder) Once I clicked the test button, I was redirected to the Wordpress to authorize the consumer right. I then clicked yes, then I got the error of non-existent URL "http://localhost/wp_app.php?action=access", which should be "http://localhost/oauthtest/wp_app.php?action=access" Tring to make it work, I changed "$callback_url = "$base_url/wp_app.php?action=access" to "$callback_url = "http://localhost/oauthtest/wp_app.php?action=access"" because I thought something is wrong with the base_url. I then cliked the test button again, this time the authorization window did not show up (already approved), I got an error as "http://localhost/wordpress/wp-app.php/posts?oauth_version=1.0&oauth_nonce=a6c0ce38cff5bf899d072867d0d4694e&oauth_timestamp=1214025525&oauth_consumer_key=ccaa282c3f6c66cf0b2491b9f152e11ad4bd822c&oauth_token=faebda8608c455bfef6d2f0628fd5c055276659a&oauth_signature_method=HMAC-SHA1&oauth_signature=VzGlNOYOHhq1XaTL4wk9mWuiQsI%3D string(215) "HTTP/1.1 404 Not Found" Thank you very much. I reapplied the patch manually after I found that the patch command did not work as expected.
Now it looks like this in file wp-app.php:

global $always_authenticate;
if( !empty( $_SERVER['ORIG_PATH_INFO'] ) )
$path = $_SERVER['ORIG_PATH_INFO'];
else
$path = $_SERVER['PATH_INFO'];
$method = $_SERVER['REQUEST_METHOD'];
log_app('REQUEST',"$method $path\n================");

This is the dumped $SERVER (no PATH_INFO?):

["SERVER_SOFTWARE"]=>
string(61) "Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.1 with Suhosin-Patch"
["SERVER_NAME"]=>
string(9) "localhost"
["SERVER_ADDR"]=>
string(9) "127.0.0.1"
["SERVER_PORT"]=>
string(2) "80"
["REMOTE_ADDR"]=>
string(9) "127.0.0.1"
["DOCUMENT_ROOT"]=>
string(9) "/var/www/"
["SERVER_ADMIN"]=>
string(19) "webmaster@localhost"
["SCRIPT_FILENAME"]=>
string(29) "/var/www/oauthtest/wp_app.php"
["REMOTE_PORT"]=>
string(5) "49426"
["GATEWAY_INTERFACE"]=>
string(7) "CGI/1.1"
["SERVER_PROTOCOL"]=>
string(8) "HTTP/1.1"
["REQUEST_METHOD"]=>
string(3) "GET"
["QUERY_STRING"]=>
string(13) "action=access"
["REQUEST_URI"]=>
string(35) "/oauthtest/wp_app.php?action=access"
["SCRIPT_NAME"]=>
string(21) "/oauthtest/wp_app.php"
["PHP_SELF"]=>
string(21) "/oauthtest/wp_app.php"
["REQUEST_TIME"]=>
int(1214026621)
["argv"]=>
array(1) {
[0]=>
string(13) "action=access"
}
["argc"]=>
int(1)
}

This is the description about how the error still happened (wp_app.php in another folder)
Once I clicked the test button, I was redirected to the Wordpress to authorize the consumer right. I then clicked yes, then I got the error of non-existent URL "http://localhost/wp_app.php?action=access", which should be "http://localhost/oauthtest/wp_app.php?action=access"
Tring to make it work, I changed "$callback_url = "$base_url/wp_app.php?action=access" to "$callback_url = "http://localhost/oauthtest/wp_app.php?action=access"" because I thought something is wrong with the base_url.
I then cliked the test button again, this time the authorization window did not show up (already approved), I got an error as

"http://localhost/wordpress/wp-app.php/posts?oauth_version=1.0&oauth_nonce=a6c0ce38cff5bf899d072867d0d4694e&oauth_timestamp=1214025525&oauth_consumer_key=ccaa282c3f6c66cf0b2491b9f152e11ad4bd822c&oauth_token=faebda8608c455bfef6d2f0628fd5c055276659a&oauth_signature_method=HMAC-SHA1&oauth_signature=VzGlNOYOHhq1XaTL4wk9mWuiQsI%3D
string(215) "HTTP/1.1 404 Not Found"

]]>