tags:

views:

668

answers:

1
Q: 

facebook api over rest getting Incorrect signature <error_code> 104

Hello all im trying to send rest api Users.getLoggedInUser i have all the secret session and all the Authenticationi made according to this site : http://wiki.developers.facebook.com/index.php/Authorization_and_Authentication_for_Desktop_Applications here is my code (cpp QT but it can be any thing else ) :

QString toAPISignature = 
                "api_key="
                +  API_KEY 
                + "call_id=" + strCallid 
                + "format=XML" 
                + "method=Users.getLoggedInUser"
                + "session_key="+ fbSessionKey  
                + "v=1.0"+m_fbSecretKey;

QByteArray hashedApiData= QCryptographicHash::hash(toAPISignature.toAscii(),
          QCryptographicHash::Md5);
QString APIMD5Signature(hashedApiData);


.....
.....
.....
// now set the api request
 QUrl api_url;
 api_url.setUrl(FB_REST_URL);
 api_url.addQueryItem("api_key",API_KEY);
 api_url.addQueryItem("session_key",fbSessionKey);
 api_url.addQueryItem("call_id",strCallid);
 api_url.addQueryItem("sig",APIMD5Signature);
 api_url.addQueryItem("format","XML");
 api_url.addQueryItem("method","Users.getLoggedInUser");
 api_url.addQueryItem("v","1.0");

then i init the request object :

QNetworkRequest request;
request.setHeader(QNetworkRequest::ContentTypeHeader,"application/x-www-form-urlencoded");
request.setRawHeader("User-Agent", "Facebook API Client 0.1");
request.setUrl(url);

do the get request :
QEventLoop loop;
QNetworkReply *reply = networkManager->get(request);
connect(reply, SIGNAL(finished()), &loop, SLOT(quit()));
loop.exec();
QByteArray data=reply->readAll();

and this is the xml im getting back: look ..why the sig looks like this ? does the hash MD5 suppose to look like set of numbers ?

<arg>
      <key>sig</key>
      <value>N{?¬???¬@?±B???????¶</value>
 </arg>

<?xml version="1.0" encoding="UTF-8"?>
<error_response xmlns="http://api.facebook.com/1.0/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://api.facebook.com/1.0/ http://api.facebook.com/1.0/facebook.xsd"&gt;
  <error_code>104</error_code>
  <error_msg>Incorrect signature</error_msg>
  <request_args list="true">
    <arg>
      <key>api_key</key>
      <value>bc5xxxxxxxxx57811</value>
    </arg>
    <arg>
      <key>session_key</key>
      <value>a99fdxxxxxxx5c2-100xxxxx455</value>
    </arg>
    <arg>
      <key>call_id</key>
      <value>1</value>
    </arg>
    <arg>
      <key>sig</key>
      <value>N{?¬???¬@?±B???????¶</value>
    </arg>
    <arg>
      <key>format</key>
      <value>XML</value>
    </arg>
    <arg>
      <key>method</key>
      <value>Users.getLoggedInUser</value>
    </arg>
    <arg>
      <key>v</key>
      <value>1.0</value>
    </arg>
  </request_args>
</error_response>
+1  A: 

The big problem is that you need to convert the hashedApiData QByteArray to Hex: 

QString APIMD5Signature(hashedApiData.toHex());

That may do it for you, but you can still cause problems converting back and forth to strings, which you really don't need to do.

Here's how I handle creating the sig and doing the post to facebook. The m_argMap contains the pairs for the POST (e.g. <"format","XML">) except for the secret which isn't needed for the POST but is needed for the sig. (I'm using a QVariant there due to some pre-processing that happens involving that QMap before it gets here).

QByteArray sigByteArray;
QByteArray postArgs;

// QMap is automatically sorted by keys
QMapIterator<QString, QVariant> i(m_argMap);
while (i.hasNext()) {
     i.next();
     sigByteArray.append(i.key() + "=" + i.value().toString() );
     postArgs.append(i.key() + "=" + i.value().toString() + "&");
}

sigByteArray.append(m_userInfo->getSecret());

QByteArray sig = QCryptographicHash::hash(sigByteArray,QCryptographicHash::Md5 );

postArgs.append("sig=");
postArgs.append(sig.toHex());

QByteArray exclude("&=");
QByteArray include;
postArgs = postArgs.toPercentEncoding(exclude,include,'%');

// qDebug() << postArgs;

QUrl url("http://api.facebook.com/restserver.php");

QNetworkRequest nr;
nr.setUrl(url);
nr.setHeader(QNetworkRequest::ContentTypeHeader, "application/x-www-form-urlencoded");

m_reply = m_manager->post(nr,postArgs);
Brian Roach  2010-04-13 16:46:29

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS