version 1.6, 2018/08/14 21:42:36
|
version 1.7, 2018/08/14 22:00:43
|
Line 188 sub handler {
|
Line 188 sub handler {
|
# Verify XML in request body has not been tampered with |
# Verify XML in request body has not been tampered with |
# |
# |
|
|
my $bodyhash = Digest::SHA::sha1_base64($xmlbody); |
if ($content_type eq 'application/xml') { |
while (length($bodyhash) % 4) { |
my $bodyhash = Digest::SHA::sha1_base64($xmlbody); |
$bodyhash .= '='; |
while (length($bodyhash) % 4) { |
} |
$bodyhash .= '='; |
unless ($bodyhash eq $params->{oauth_body_hash}) { |
} |
$errors{16} = 1; |
unless ($bodyhash eq $params->{oauth_body_hash}) { |
&invalid_request($r,$params,\%errors); |
$errors{16} = 1; |
return OK; |
&invalid_request($r,$params,\%errors); |
|
return OK; |
|
} |
} |
} |
|
|
# |
# |