Flutter (Dart 2) accessing twitter GET api

2019-06-03 17:44发布

站内问答 / 移动开发
947 2 6

I am having trouble calling on the Twitter api in my Flutter app. I have used the twitter sign in library to get my token and secret token, and I have my consumer and consumer secret. But I am unable to form an https request correctly. I have tried using an Oauth2 client as well as a straight request and neither has worked.

I found this repo with a dart 1 Twitter and Oauth implementation, but I have been unable to figure out how to convert this to Dart 2. All help is greatly appreciated.

Edit: Here is most recent code:

final response = await http.get(new Uri.https(
        "api.twitter.com", "/1.1/statuses/home_timeline.json", {
      "count": "200",
      "tweet_mode": "extended",
      "exclude_replies": "false"
    }), headers: {
      "Authorization": 'Bearer ${twitter.token}', //twitter.token is the token recieved from Twitter sign in process
      "Content-Type": "application/json"
    });

returns "errors":[{"code":89,"message":"Invalid or expired token."}] I know that the token is valid

Edit 2:

Future<List<Tweet>> getTimeline() async {
    print("Getting timeline");
    var query = https.get(
        "https://api.twitter.com/1.1/statuses/home_timeline.json?count=2&tweet_mode=extended&exclude_replies=false",
    headers: {
      "Authorization":
          'oauth_consumer_key="$_consumerKey", oauth_token="${twitter.token}"',
      "Content-Type": "application/json"
    }).timeout(Duration(seconds: 15));

    print("Before await");
    final response = await query;
    print("code: ${response.statusCode}");
    ...
}

After more debugging there was a possible null exception with twitter.token. After fixing that, I am still getting bad authorization data. I will keep trying to add more info to the header and see if something will help it.

Edit 3:

Here is my generate signature method:

static String generateSignature(String method, String base, List<String> sortedItems) {
    String sig = '$method&${Uri.encodeComponent(base)}&';
    String param = '';

    for (int i = 0; i < sortedItems.length; i++) {
      if (i == 0)
        param = sortedItems[i];
      else
        param += '&${sortedItems[i]}';
    }

    sig += Uri.encodeComponent(param);
    String key = '${Uri.encodeComponent(_secretKey)}&${Uri.encodeComponent(twitter.secret)}';
    var digest = Hmac(sha1, utf8.encode(key)).convert(utf8.encode(sig));
    print("base: ${digest.bytes}");
    print("sig: ${base64.encode(digest.bytes)}");
    return base64.encode(digest.bytes);
  }

Here is the timeline method:

Future<List<Tweet>> getTimeline() async {
    print("Getting timeline");
    Future<http.Response> query;

    try {
      String base = 'https://api.twitter.com/1.1/statuses/home_timeline.json';
      String count = 'count=2';
      String mode = 'tweet_mode=extended';
      String replies = 'exclude_replies=false';
      String oauthConsumer = 'oauth_consumer_key="$_consumerKey"';
      String oauthToken = 'oauth_token="${twitter.token}"';
      String oauthNonce = 'oauth_nonce="${randomAlphaNumeric(20)}"';
      String oauthVersion = 'oauth_version="1.0"';
      String oauthTime =
      'oauth_timestamp="${DateTime.now().millisecondsSinceEpoch}"';
      String oauthMethod = 'oauth_signature_method="HMAC-SHA1"';
      String oauthSig = 'oauth_signature="${generateSignature("GET", base, [
    count,
    replies,
    oauthConsumer,
    oauthNonce,
    oauthTime,
    oauthToken,
    oauthVersion,
    mode
  ])}"';

  query = http.get(
      new Uri.https("api.twitter.com", "/1.1/statuses/home_timeline.json", {
        "count": "2",
        "tweet_mode": "extended",
        "exclude_replies": "false"
      }),
      headers: {
        "Authorization": '$oauthConsumer, $oauthToken, $oauthVersion, $oauthTime, $oauthNonce, $oauthMethod, $oauthSig',
        "Content-Type": "application/json"
      }).timeout(Duration(seconds: 15));
} catch (e) {
  print(e);
}

Thanks!

2条回答
祖国的老花朵
2楼-- · 2019-06-03 17:59

Here is the code that ended up working:

Generate string method:

static String generateSignature(
      String method, String base, List<String> sortedItems) {
    String param = '';

    for (int i = 0; i < sortedItems.length; i++) {
      if (i == 0)
        param = sortedItems[i];
      else
        param += '&${sortedItems[i]}';
    }

    String sig =
        '$method&${Uri.encodeComponent(base)}&${Uri.encodeComponent(param)}';
    String key =
        '${Uri.encodeComponent(_secretKey)}&${Uri.encodeComponent(twitter.secret)}';
    var digest = Hmac(sha1, utf8.encode(key)).convert(utf8.encode(sig));
    return base64.encode(digest.bytes);
  }

Convenience method for twitter get calls:

Future<http.Response> _twitterGet(
      String base, List<List<String>> params) async {
    if (twitter == null) await _startSession();

    String oauthConsumer =
        'oauth_consumer_key="${Uri.encodeComponent(_consumerKey)}"';
    String oauthToken = 'oauth_token="${Uri.encodeComponent(twitter.token)}"';
    String oauthNonce =
        'oauth_nonce="${Uri.encodeComponent(randomAlphaNumeric(42))}"';
    String oauthVersion = 'oauth_version="${Uri.encodeComponent("1.0")}"';
    String oauthTime =
        'oauth_timestamp="${(DateTime.now().millisecondsSinceEpoch / 1000).toString()}"';
    String oauthMethod =
        'oauth_signature_method="${Uri.encodeComponent("HMAC-SHA1")}"';
    var oauthList = [
      oauthConsumer.replaceAll('"', ""),
      oauthNonce.replaceAll('"', ""),
      oauthMethod.replaceAll('"', ""),
      oauthTime.replaceAll('"', ""),
      oauthToken.replaceAll('"', ""),
      oauthVersion.replaceAll('"', "")
    ];
    var paramMap = Map<String, String>();

    for (List<String> param in params) {
      oauthList.add(
          '${Uri.encodeComponent(param[0])}=${Uri.encodeComponent(param[1])}');
      paramMap[param[0]] = param[1];
    }

    oauthList.sort();
    String oauthSig =
        'oauth_signature="${Uri.encodeComponent(generateSignature("GET", "https://api.twitter.com$base", oauthList))}"';

    return await http
        .get(new Uri.https("api.twitter.com", base, paramMap), headers: {
      "Authorization":
          'Oauth $oauthConsumer, $oauthNonce, $oauthSig, $oauthMethod, $oauthTime, $oauthToken, $oauthVersion',
      "Content-Type": "application/json"
    }).timeout(Duration(seconds: 15));
  }

Example call:

Future<User> getUser(String tag) async {
    String base = '/1.1/users/show.json';
    final response = await _twitterGet(base, [
      ["screen_name", tag],
      ["tweet_mode", "extended"]
    ]);

    if (response.statusCode == 200) {
      try {
        return User(json.decode(response.body));
      } catch (e) {
        print(e);
        return null;
      }
    } else {
      print("Error retrieving user");
      print(response.body);
      return null;
    }
  }
查看更多
0人赞 添加讨论(0) 举报
Emotional °昔
3楼-- · 2019-06-03 18:03

Here is the doc for twitter user authentication: https://developer.twitter.com/en/docs/basics/authentication/overview/3-legged-oauth

The first 3 steps are handled by flutter_twitter_login. Take a look at the last example:

Step 4: Using these credentials for app-user required requests

Example POST statuses/update

Request includes:

POST statuses/update.json

oauth_consumer_key=cChZNFj6T5R0TigYB9yd1w

oauth_token=7588892-kagSNqWge8gB1WwE3plnFsJHAZVfxWD7Vb57p0b4

Another example can be found here: https://developer.twitter.com/en/docs/tweets/post-and-engage/api-reference/post-statuses-update

$ curl --request POST 
--url 'https://api.twitter.com/1.1/statuses/update.json?
status=Test%20tweet%20using%20the%20POST%20statuses%2Fupdate%20endpoint' 
--header 'authorization: OAuth oauth_consumer_key="YOUR_CONSUMER_KEY",
oauth_nonce="AUTO_GENERATED_NONCE", oauth_signature="AUTO_GENERATED_SIGNATURE",
oauth_signature_method="HMAC-SHA1", oauth_timestamp="AUTO_GENERATED_TIMESTAMP",
oauth_token="USERS_ACCESS_TOKEN", oauth_version="1.0"' 
--header 'content-type: application/json'

I'm not sure if you need all of these arguments, but the header for a simple get request probably needs at least this:

headers: {
  "Authorization": 'oauth_consumer_key="${consumerKey}", oauth_token="${twitter.token}"', 
  "Content-Type": "application/json"
}
查看更多
0人赞 添加讨论(0) 举报
登录 后发表回答
相关问题
查看全部
相关文章
查看全部
收藏的人(6)