<div dir="ltr">Well I tried to do this using the "pre-shared secret key" method described at <a href="https://tools.wmflabs.org/oauth-hello-world/">https://tools.wmflabs.org/oauth-hello-world/</a> and I just get an invalid key error, so I'm doing something wrong. <div><br></div><div>You can take this email off the public list if you would prefer, and I apologize ahead of time for using up your valuable time. </div></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Oct 17, 2016 at 10:36 AM, Brad Jorsch (Anomie) <span dir="ltr"><<a href="mailto:bjorsch@wikimedia.org" target="_blank">bjorsch@wikimedia.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><span class="">On Sun, Oct 16, 2016 at 11:28 PM, Magog The Ogre <span dir="ltr"><<a href="mailto:magog.the.ogre@gmail.com" target="_blank">magog.the.ogre@gmail.com</a>></span> wrote:<br></span><div class="gmail_extra"><div class="gmail_quote"><span class=""><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr">The one example program makes only a vague reference to it (<a href="https://tools.wmflabs.org/oauth-hello-world/index.php?action=download" target="_blank">https://tools.wmflabs.org/oau<wbr>th-hello-world/index.php?actio<wbr>n=download</a>), and the other (<a href="https://www.mediawiki.org/wiki/OAuth/For_Developers#PHP_demo_cli_client_with_RSA_keys" target="_blank">https://www.mediawiki.org/wik<wbr>i/OAuth/For_Developers#PHP_dem<wbr>o_cli_client_with_RSA_keys</a>) presupposes that I have preexisting libraries installed, for some reason.<br></div></blockquote></span><div><br>In any case using RSA keys is going to want you to have some sort of
library installed to deal with using RSA keys, if not a library to
handle all the OAuth stuff itself.<br><br>The libraries needed for your
second link are included in the OAuth extension itself. The most
relevant bit for your question here is the <span class="m_6915953662816882901gmail-nc">OAuthSignatureMethod_RSA_SHA1:<wbr>:build_signature() method[1] which uses PHP's openssl extension to do the actual signing.[2]<br></span><br> [1]: <a href="https://phabricator.wikimedia.org/diffusion/EOAU/browse/master/lib/OAuth.php;51cd54d332d1b6c0647f3be699c000833cb9d54e$235-252" target="_blank">https://phabricator.wikimedia.<wbr>org/diffusion/EOAU/browse/<wbr>master/lib/OAuth.php;<wbr>51cd54d332d1b6c0647f3be699c000<wbr>833cb9d54e$235-252</a><br> [2]: <a href="https://secure.php.net/openssl" target="_blank">https://secure.php.net/openssl</a><br> </div><span class=""><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div>I just want to be able to authenticate the identity of users.
Magnus Manske has said he doesn't want to maintain TUSC anymore, but I
cannot figure out how to do this with the documentation provided.</div></div></blockquote><div><br></div><div><span class="m_6915953662816882901gmail-nc"></span></div></span><div><span class="m_6915953662816882901gmail-nc">Note that using RSA-SHA1 rather than HMAC-SHA1 is in no way required.<span class="HOEnZb"><font color="#888888"><br></font></span></span></div><span class="HOEnZb"><font color="#888888"><div><br><br></div></font></span></div><span class="HOEnZb"><font color="#888888">-- <br><div class="m_6915953662816882901gmail_signature"><div dir="ltr"><div>Brad Jorsch (Anomie)<br>Senior Software Engineer<br>Wikimedia Foundation</div></div></div>
</font></span></div></div>
<br>______________________________<wbr>_________________<br>
Labs-l mailing list<br>
<a href="mailto:Labs-l@lists.wikimedia.org">Labs-l@lists.wikimedia.org</a><br>
<a href="https://lists.wikimedia.org/mailman/listinfo/labs-l" rel="noreferrer" target="_blank">https://lists.wikimedia.org/<wbr>mailman/listinfo/labs-l</a><br>
<br></blockquote></div><br></div>