使用 Python-oauth2 在 python 中为 tumblr API 初始化 Oauth 客户端 [英] Oauth client initialization in python for tumblr API using Python-oauth2

问题描述

我是 Oauth 的新手.过去，对于用 Python 编写的 twitter 应用程序，我使用 python-oauth2 库来初始化客户端，如下所示:

I'm new to Oauth. In the past for twitter applications written in Python i used python-oauth2 library to initialize client like this:

consumer = oauth.Consumer(key = CONSUMER_KEY, secret = CONSUMER_SECRET)
token = oauth.Token(key = ACCESS_KEY, secret = ACCESS_SECRET)
client = oauth.Client(consumer, token)

这很容易，因为 twitter 提供了 CONSUMER 和 ACCESS 密钥和秘密.但现在我需要为 tumblr 做同样的事情.问题是 tumblr 只提供了 CONSUMER_KEY、CONSUMER_SECRET 和这些网址:

That was easy because twitter provides both CONSUMER and ACCESS keys and secrets. But now i need to do the same for tumblr. The problem is that tumblr provides only CONSUMER_KEY, CONSUMER_SECRET and these urls:

Request-token URL   http://www.tumblr.com/oauth/request_token
Authorize URL       http://www.tumblr.com/oauth/authorize
Access-token URL    http://www.tumblr.com/oauth/access_token

如何使用这些数据初始化客户端以访问 tumblr API?

Using this data how can i initialize client to access tumblr API?

更新

jterrace 建议了我之前尝试使用的代码.它的问题是 oauth_callback.如果我没有指定任何内容，api 将返回错误未指定 oauth_callback"，但如果我确实指定了一些 url，如http://example.com/oauthcb/"并点击链接 http://www.tumblr.com/oauth/authorize?oauth_token=9ygTF...，然后按允许按钮，tumblr 不显示任何 PIN 代码页，它都会立即重定向到该回调 url，这是无用的，因为它是桌面应用程序.为什么不显示 PIN 码?

jterrace suggested a code i tried to use before. The problem with it is oauth_callback. If i don't specify any, api returns error "No oauth_callback specified", but if i do specify some url like "http://example.com/oauthcb/" and follow the link http://www.tumblr.com/oauth/authorize?oauth_token=9ygTF..., then press Allow button, tumblr doesn't show any PIN code page, it immediately redirects to that callback url, which is useless since it's desktop application. Why PIN code isn't shown?

UPD 2

Tumblr API 不支持 PIN 码授权.改用 xAuth - https://groupgoogle.com/group/tumblr-api/browse_thread/thread/857285e6a2b4268/15060607dc306c1d?lnk=gst&q=pin#15060607dc306c1d

Tumblr API doesn't support PIN code authorization. Use xAuth instead - https://groups.google.com/group/tumblr-api/browse_thread/thread/857285e6a2b4268/15060607dc306c1d?lnk=gst&q=pin#15060607dc306c1d

推荐答案

首先，导入oauth2模块 并设置服务的 URL 和消费者信息:

First, import the oauth2 module and set up the service's URL and consumer information:

import oauth2

REQUEST_TOKEN_URL = 'http://www.tumblr.com/oauth/request_token'
AUTHORIZATION_URL = 'http://www.tumblr.com/oauth/authorize'
ACCESS_TOKEN_URL = 'http://www.tumblr.com/oauth/access_token'
CONSUMER_KEY = 'your_consumer_key'
CONSUMER_SECRET = 'your_consumer_secret'

consumer = oauth2.Consumer(CONSUMER_KEY, CONSUMER_SECRET)
client = oauth2.Client(consumer)

第 1 步:获取请求令牌.这是一个临时令牌，用于让用户授权访问令牌并签署请求以获取说访问令牌.

Step 1: Get a request token. This is a temporary token that is used for having the user authorize an access token and to sign the request to obtain said access token.

resp, content = client.request(REQUEST_TOKEN_URL, "GET")

request_token = dict(urlparse.parse_qsl(content))
print "Request Token:"
print "    - oauth_token        = %s" % request_token['oauth_token']
print "    - oauth_token_secret = %s" % request_token['oauth_token_secret']

第 2 步:重定向到提供者.由于这是一个 CLI 脚本，我们不重定向.在 Web 应用程序中，您会将用户重定向到 URL下面.

Step 2: Redirect to the provider. Since this is a CLI script we do not redirect. In a web application you would redirect the user to the URL below.

print "Go to the following link in your browser:"
print "%s?oauth_token=%s" % (AUTHORIZATION_URL, request_token['oauth_token'])

# After the user has granted access to you, the consumer, the provider will
# redirect you to whatever URL you have told them to redirect to. You can 
# usually define this in the oauth_callback argument as well.
oauth_verifier = raw_input('What is the PIN? ')

第 3 步: 一旦消费者将用户重定向回 oauth_callback您可以请求用户已批准的访问令牌的 URL.您使用请求令牌来签署这个请求.完成后你扔掉请求令牌并使用返回的访问令牌.你应该存储这个访问令牌安全的地方，如数据库，以备将来使用.

Step 3: Once the consumer has redirected the user back to the oauth_callback URL you can request the access token the user has approved. You use the request token to sign this request. After this is done you throw away the request token and use the access token returned. You should store this access token somewhere safe, like a database, for future use.

token = oauth2.Token(request_token['oauth_token'], request_token['oauth_token_secret'])
token.set_verifier(oauth_verifier)
client = oauth2.Client(consumer, token)

resp, content = client.request(ACCESS_TOKEN_URL, "POST")
access_token = dict(urlparse.parse_qsl(content))

print "Access Token:"
print "    - oauth_token        = %s" % access_token['oauth_token']
print "    - oauth_token_secret = %s" % access_token['oauth_token_secret']
print

现在你有了一个访问令牌，你可以用它调用受保护的方法.

Now that you have an access token, you can call protected methods with it.

事实证明，tumblr 不支持 PIN 授权方法.相关帖子 hereno一>.

Turns out that tumblr does not support the PIN authorization method. Relevant post here.

这篇关于使用 Python-oauth2 在 python 中为 tumblr API 初始化 Oauth 客户端的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！