Home/ Questions/Q 7664561
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-31T14:20:17+00:00

I am creating an application for a client that integrates with the LinkedIn API.

  • 0

I am creating an application for a client that integrates with the LinkedIn API. I got through the authentication without too many problems, but everything there is working and now I need to make the actual requests. Primarily I am working in the Share API. I create the HTTP call with the following method:

  public any function sendRequest(any req){
    var param = false;
    var headParams = [];
    var bodyParams = [];
    var call = new http(proxyserver='192.168.201.12', proxyport=8888);
    var i = 1;

    call.setUrl(Arguments.req.getRequestUrl());
    call.setMethod(Arguments.req.getMethod());

    getSigner().signRequest(Arguments.req);

    headParams = Arguments.req.getParameters(true);
    bodyParams = Arguments.req.getParameters();

    if(arrayLen(bodyParams)){
      call.addParam(
        type='header',
        name='Authorization',
        value="OAuth#Variables.encoder.encodedParameter(Arguments.req.getParameters(true), true, false, true)#"
      );
    }

    // Header parameters
    if(!arrayLen(bodyParams)){
      for(i=1; i<=arrayLen(headParams); i++){
        param = headParams[i];
        call.addParam(
          type=Arguments.req.getParameterType(),
          name=Variables.encoder.parameterEncodedFormat(param.name),
          value=param.value
        );
      }
    }

    // Body parameters (should only be 1)
    if(arrayLen(bodyParams)){
      for(i=1; i<=arrayLen(bodyParams); i++){
        param = bodyParams[i];
        call.addParam(
          type='xml',
          value=param.value
        );
      }
    }
    return call.send().getPrefix();
  }

When I sign the request, I use the following method:

  public void function signRequest(any req){
    var headParams = Arguments.req.getParameters(true);
    var bodyParams = Arguments.req.getParameters();
    var secret = "#Variables.encoder.parameterEncodedFormat(getConsumer().getConsumerSecret())#&#Variables.encoder.parameterEncodedFormat(Arguments.req.getOAuthSecret())#";
    var base = '';

    params = Variables.encoder.encodedParameter(headParams, true, true);
    params = "#params#&#Variables.encoder.parameterEncodedFormat(bodyParams[1].value)#";

    secret = toBinary(toBase64(secret));

    local.mac = createObject('java', 'javax.crypto.Mac').getInstance('HmacSHA1');
    local.key = createObject('java', 'javax.crypto.spec.SecretKeySpec').init(secret, local.mac.getAlgorithm());

    base = "#Arguments.req.getMethod()#&";
    base = base & Variables.encoder.parameterEncodedFormat(Arguments.req.getRequestUrl());
    base = "#base#&#Variables.encoder.parameterEncodedFormat(params)#";
    //writeDump(base) abort;
    local.mac.init(local.key);
    local.mac.update(JavaCast('string', base).getBytes());

    Arguments.req.addParameter('oauth_signature', toString(toBase64(mac.doFinal())), true);
  }

I have tried signing it with only the header parameters (usual OAuth params) and include the body parameter (xml string), but everything gives me a 401 error, so I was wondering what I should be using in my base string that gets signed for the request?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Not a proper answer to your question, but may help you.

    In my case after many unsuccessful tries of using the LinkedIn API with CF8, I finally gave up / didn’t have more time for it. Instead of a “proper” integration I’ve used the linkedin-j Java library. It finally got me going and I didn’t encounter any more signing issues.

    Btw for all my integrations requiring OAuth I’ve used this library and didn’t have any signing issues as with LinkedIn API.

    • 0