Authorization Signature Calculation

btobiczyk · January 27, 2020, 8:12pm

On a collection, when setting up authorization, Oauth 1.0, add auth data to request headers, etc…
how is the signature calculated exactly? Assume SHA256, what is the string order/format that is used to create the signature?

vdespa · May 16, 2020, 6:38pm

I would expect that it is calculated as explained in the protocol:

 digest = HMAC-SHA1 (key, text)

See also https://tools.ietf.org/html/rfc5849#section-3.4.2.

stevesmith741 · December 22, 2024, 12:11pm

Answer seems to assume that OP knows the values that make up . I certainly don’t. 4 years after this post, the answer to this question seems as elusive as it was then.

stevesmith741 · December 22, 2024, 12:12pm

Answer seems to assume that OP knows the values that make up “text”. I certainly don’t. 4 years after this post, the answer to this question seems as elusive as it was then.

Topic		Replies	Views
HMAC-SHA256 method to calculate the request signature New to APIs/Postman	2	9542	February 14, 2023
How is the oauth_signature created? Ask the Experts and Postman Tips	2	1155	December 22, 2024
Oauth 1.0 values extraction Ask the Experts and Postman Tips	2	838	April 18, 2020
Understanding the signature base url used by postman for OAuth1.0 Ask the Experts and Postman Tips authentication	2	1211	December 23, 2024
OpenAPI Authentication issues - signature calculation Ask the Experts and Postman Tips	3	844	October 7, 2024

Authorization Signature Calculation

Related topics