OAuth1.0 (verify signature)

GET https://postman-echo.com/oauth1

OAuth1.0a is a specification that defines a protocol that can be used by one service to access protected resources (endpoints) on another service. A major part of OAuth1.0 is HTTP Request Signing. This endpoint allows you to check whether the request calculation works properly in the client.

The endpoint supports the HTTP Authorization header. In case the signature verification fails, the endpoint provides the four debug values,

base_uri
normalized_param_string
base_string
signing_key

For more details about these parameters, check the OAuth1.0a Specification

In order to use this endpoint, you can set the following values:

Consumer Key: RKCGzna7bv9YD57c

Consumer Secret: D+EdQ-gs$-%@2Nu7

If you are using Qodex, also check the Add params to header and Auto add parameters boxes.

Request Body

[{"name"=>"code", "value"=>"xWnkliVQJURqB2x1", "datatype"=>"string"}, {"name"=>"grant_type", "value"=>"authorization_code", "datatype"=>"string"}, {"name"=>"redirect_uri", "value"=>"https://www.getpostman.com/oauth2/callback", "datatype"=>"string"}, {"name"=>"client_id", "value"=>"abc123", "datatype"=>"string"}, {"name"=>"client_secret", "value"=>"ssh-secret", "datatype"=>"string"}]

RESPONSES

status: OK

{&quot;status&quot;:&quot;pass&quot;,&quot;message&quot;:&quot;OAuth-1.0a signature verification was successful&quot;}