oauth 0.5.10 → 0.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b8b32f6236156240692af164df90d283aa768dd2f0f6e2a08c6a4c39d396f824
-  data.tar.gz: 4c6a5f53fd4417683198af1371938358e8808ff1f9fcad0d2e4e2af5e4233f4a
+  metadata.gz: 4bbf3f3a460e4b7cd04184248e8321897a3b6b1e7d7b46803f943fffdd512543
+  data.tar.gz: 6aec1401ce4db1d54b643a11aeab44604a46382151bcd43ba19914fbc0b7d705
 SHA512:
-  metadata.gz: d0fb04a980ad2d4ae5de14d2c6a119966b5c315a1c4738678a2040db360e6c452545c3585d718e5668389f0c183af610f7e18dc3cdc710b7b3ecc33bea419a0a
-  data.tar.gz: 7820c639c056aca51781fcf0a73d65c7f3a9c9032af95413024d713f80078f5b12d2d1949e3b1aec8feaf87058c5dc40eaf2dbc6a735da070a683307affed1ad
+  metadata.gz: 3df8309921280baa7577d3fcc5417c2408cd9b97c90f68ecb871a3ae3d7d42f7374417ca2a4d0002ef3a1a25325d16b7d3cdec52c771e78711e13dcfbd86309c
+  data.tar.gz: 0b36611a495fde3b0ec4116486a0d9122d2ab336681704d5baeebbb7cdd68710b420c98196c84d6ab43940beec662ec6d563dd799bea6117b4c3e58a854d16b3

data/CHANGELOG.md

@@ -13,6 +13,20 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ### Removed
 
+## [0.6.0] 2022-08-23
+### Added
+* New option `body_hash_enabled` which defaults to true to maintain backward compatibility with prior releases. Setting to `false` disables generation of a `oauth_body_hash` component as part of the signature computation.
+* Improved documentation of support policy via Tidelift
+* Stop testing against active_support v2
+
+### Changed
+* Utilize version_gem extracted from oauth2 gem for VERSION
+  * Added new `OAuth::Version` namespace
+  * VERSION constant now at `OAuth::Version::VERSION`
+
+### Removed
+* Ruby 2.0, 2.1, 2.2, and 2.3 are no longer valid install targets
+
 ## [0.5.10] 2022-05-04
 The "Can it be the end of the line for 0.5.x?" Release
 
@@ -288,7 +302,7 @@ The "Can it be the end of the line for 0.5.x?" Release
 
 ## [0.3.4] 2009-05-06
 ### Changed
-* OAuth::Client::Helper uses OAuth::VERSION (chadisfaction)
+* OAuth::Client::Helper uses OAuth::Version::VERSION (chadisfaction)
 
 ### Fixed
 * Fix OAuth::RequestProxy::ActionControllerRequest's handling of params (Tristan Groléat)
@@ -386,7 +400,8 @@ but please have a look at the unit tests.
 * Moved all non-Rails functionality from the Rails plugin:
   http://code.google.com/p/oauth-plugin/
 
-[Unreleased]: https://github.com/oauth-xx/oauth-ruby/compare/v0.5.10...v0.5-maintenance
+[Unreleased]: https://github.com/oauth-xx/oauth-ruby/compare/v0.6.0...v0.6-maintenance
+[0.6.0]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.6.0
 [0.5.10]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.10
 [0.5.9]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.9
 [0.5.8]: https://github.com/oauth-xx/oauth-ruby/releases/tag/v0.5.8

data/README.md

@@ -20,10 +20,6 @@ See the sibling `oauth2` gem for OAuth 2.0 implementations in Ruby.
 [oauth1-spec]: http://oauth.net/core/1.0/
 [sibling-gem]: https://github.com/oauth-xx/oauth-ruby
 
-**NOTE**
-
-This README, on branch `v0.5-maintenance`, targets 0.5.x series releases.  For later releases please see the `master` branch README.
-
 ## Status
 
 <!--
@@ -57,11 +53,11 @@ appended indicators:
 |:----|-----------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
 | 1️⃣ | name, license, docs   | [![RubyGems.org][⛳️name-img]][⛳️gem] [![License: MIT][🖇src-license-img]][🖇src-license] [![FOSSA][🏘fossa-img]][🏘fossa] [![RubyDoc.info][🚎yard-img]][🚎yard] [![InchCI][🖐inch-ci-img]][🚎yard]                                                                                              |
 | 2️⃣ | version & activity    | [![Gem Version][⛳️version-img]][⛳️gem] [![Total Downloads][🖇DL-total-img]][⛳️gem] [![Download Rank][🏘DL-rank-img]][⛳️gem] [![Source Code][🚎src-home-img]][🚎src-home] [![Open PRs][🖐prs-o-img]][🖐prs-o] [![Closed PRs][🧮prs-c-img]][🧮prs-c] <!--[![Next Version][📗next-img]][📗next]--> |
-| 3️⃣ | maintanence & linting | [![Maintainability][⛳cclim-maint-img♻️]][⛳cclim-maint] [![Helpers][🖇triage-help-img]][🖇triage-help] [![Depfu][🏘depfu-img♻️]][🏘depfu♻️] [![Contributors][🚎contributors-img]][🚎contributors] [![Style][🖐style-wf-img]][🖐style-wf] [![Kloc Roll][🧮kloc-img]][🧮kloc]                      |
+| 3️⃣ | maintenance & linting | [![Maintainability][⛳cclim-maint-img♻️]][⛳cclim-maint] [![Helpers][🖇triage-help-img]][🖇triage-help] [![Depfu][🏘depfu-img♻️]][🏘depfu♻️] [![Contributors][🚎contributors-img]][🚎contributors] [![Style][🖐style-wf-img]][🖐style-wf] [![Kloc Roll][🧮kloc-img]][🧮kloc]                      |
 | 4️⃣ | testing               | [![Open Issues][⛳iss-o-img]][⛳iss-o] [![Closed Issues][🖇iss-c-img]][🖇iss-c] [![Supported][🏘sup-wf-img]][🏘sup-wf] [![Heads][🚎heads-wf-img]][🚎heads-wf] [![Unofficial Support][🖐uns-wf-img]][🖐uns-wf] [![MacOS][🧮mac-wf-img]][🧮mac-wf] [![Windows][📗win-wf-img]][📗win-wf]             |
 | 5️⃣ | coverage & security   | [![CodeClimate][⛳cclim-cov-img♻️]][⛳cclim-cov] [![CodeCov][🖇codecov-img♻️]][🖇codecov] [![Coveralls][🏘coveralls-img]][🏘coveralls] [![Security Policy][🚎sec-pol-img]][🚎sec-pol] [![CodeQL][🖐codeQL-img]][🖐codeQL] [![Code Coverage][🧮cov-wf-img]][🧮cov-wf]                              |
 | 6️⃣ | resources             | [![Discussion][⛳gh-discussions-img]][⛳gh-discussions] [![Get help on Codementor][🖇codementor-img]][🖇codementor] [![Chat][🏘chat-img]][🏘chat] [![Blog][🚎blog-img]][🚎blog] [![Blog][🖐wiki-img]][🖐wiki]                                                                                     |
-| 7️⃣ | spread 💖             | [![Liberapay Patrons][⛳liberapay-img]][⛳liberapay] [![Sponsor Me][🖇sponsor-img]][🖇sponsor] [![Tweet @ Peter][🏘tweet-img]][🏘tweet] [🌏][aboutme] [👼][angelme] [💻][coderme] [🌹][politicme]                                                                                                 |
+| 7️⃣ | spread 💖             | [![Liberapay Patrons][⛳liberapay-img]][⛳liberapay] [![Sponsor Me][🖇sponsor-img]][🖇sponsor] [![Tweet @ Peter][🏘tweet-img]][🏘tweet] [🌏][aboutme] [👼][angelme] [💻][coderme]                                                                                                 |
 
 <!--
 The link tokens in the following sections should be kept ordered by the row and badge numbering scheme
@@ -124,10 +120,10 @@ The link tokens in the following sections should be kept ordered by the row and
 <!-- 5️⃣ coverage & security -->
 [⛳cclim-cov]: https://codeclimate.com/github/oauth-xx/oauth-ruby/test_coverage
 [⛳cclim-cov-img♻️]: https://api.codeclimate.com/v1/badges/3cf23270c21e8791d788/test_coverage
-[🖇codecov-img♻️]: https://codecov.io/gh/oauth-xx/oauth-ruby/branch/v0.5-maintenance/graph/badge.svg?token=4ZNAWNxrf9
+[🖇codecov-img♻️]: https://codecov.io/gh/oauth-xx/oauth-ruby/branch/master/graph/badge.svg?token=4ZNAWNxrf9
 [🖇codecov]: https://codecov.io/gh/oauth-xx/oauth-ruby
-[🏘coveralls]: https://coveralls.io/github/oauth-xx/oauth-ruby?branch=v0.5-maintenance
-[🏘coveralls-img]: https://coveralls.io/repos/github/oauth-xx/oauth-ruby/badge.svg?branch=v0.5-maintenance
+[🏘coveralls]: https://coveralls.io/github/oauth-xx/oauth-ruby?branch=master
+[🏘coveralls-img]: https://coveralls.io/repos/github/oauth-xx/oauth-ruby/badge.svg?branch=master
 [🚎sec-pol]: https://github.com/oauth-xx/oauth-ruby/blob/master/SECURITY.md
 [🚎sec-pol-img]: https://img.shields.io/badge/security-policy-brightgreen.svg?style=flat
 [🖐codeQL]: https://github.com/oauth-xx/oauth-ruby/security/code-scanning
@@ -158,11 +154,6 @@ The link tokens in the following sections should be kept ordered by the row and
 <!-- Maintainer Contact Links -->
 [railsbling]: http://www.railsbling.com
 [peterboling]: http://www.peterboling.com
-[aboutme]: https://about.me/peter.boling
-[angelme]: https://angel.co/peter-boling
-[coderme]:http://coderwall.com/pboling
-[politicme]: https://nationalprogressiveparty.org
-
 
 ## Installation
 
@@ -190,19 +181,19 @@ For more see [SECURITY.md][🚎sec-pol].
 ## Compatibility
 
 Targeted ruby compatibility is non-EOL versions of Ruby, currently 2.7, 3.0, and
-3.1. Ruby is limited to 2.0+ in the gemspec on this `v0.5-maintenance` branch, and
-this will change with minor version bumps, while the gem is still in 0.x,
-in accordance with the SemVer spec.
+3.1. Ruby is limited to 2.4+ in the gemspec, and this will change with minor version bumps,
+while the gem is still in 0.x, in accordance with the SemVer spec.
 
-The `master` branch now targets 0.6.x releases.
-See `v0.5-maintenance` branch for older rubies.
+The `master` branch now targets 1.0.x releases.
+See `v0.6-maintenance` branch for Ruby >= 2.4.
+See `v0.5-maintenance` branch for Ruby >= 2.0.
 
 NOTE: If there is another 0.5.x release it is anticipated to be the last of the 0.5.x series.
 
 <details>
   <summary>Ruby Engine Compatibility Policy</summary>
 
-This gem is tested against MRI, JRuby, and Truffleruby.
+This gem is tested against MRI, and to a lesser extent, against JRuby, and Truffleruby.
 Each of those has varying versions that target a specific version of MRI Ruby.
 This gem should work in the just-listed Ruby engines according to the targeted MRI compatibility in the table below.
 If you would like to add support for additional engines,
@@ -227,66 +218,82 @@ fashion. If critical issues for a particular implementation exist at the time
 of a major release, support for that Ruby version may be dropped.
 </details>
 
-|     | Ruby OAuth Version | Maintenance Branch | Supported Officially | Supported Unofficially       | Supported Incidentally |
-|:----|--------------------|--------------------|----------------------|------------------------------|------------------------|
-| 1️⃣ | 0.6.x (unreleased) | `master`           | 2.7, 3.0, 3.1        | 2.5, 2.6                     | 2.4                    |
-| 2️⃣ | 0.5.x              | `v0.5-maintenance` | 2.7, 3.0, 3.1        | 2.1, 2.2, 2.3, 2.4, 2.5, 2.6 | 2.0                    |
-| 3️⃣ | older              | N/A                | Best of luck to you! | Please upgrade!              |                        |
+|     | Ruby OAuth Version | Maintenance Branch | 🚂 Compatibility       | Official 💎          | Unofficial 💎                | Incidental 💎 |
+|:----|--------------------|--------------------|------------------------|----------------------|------------------------------|---------------|
+| 1️⃣ | 1.0.x              | `master`           | Rails 6, 7             | 2.7, 3.0, 3.1        | sorry, not sorry             | nope          |
+| 2️⃣ | 0.6.x              | `v0.6-maintenance` | Rails 5, 6, 7          | 2.7, 3.0, 3.1        | 2.5, 2.6                     | 2.4           |
+| 3️⃣ | 0.5.x              | `v0.5-maintenance` | Rails 2, 3, 4, 5, 6, 7 | 2.7, 3.0, 3.1        | 2.1, 2.2, 2.3, 2.4, 2.5, 2.6 | 2.0           |
+| 4️⃣ | older              | N/A                |                        | Best of luck to you! | Please upgrade!              | noop          |
 
 NOTE: Once 1.0 is released, the 0.x series will only receive critical bug and security updates.
 See [SECURITY.md][🚎sec-pol]
 
+🚂 NOTE: See notes on Rails in next section.
+
 ## Basics
 
 This is a ruby library which is intended to be used in creating Ruby Consumer
 and Service Provider applications. It is NOT a Rails plugin, but could easily
 be used for the foundation for such a Rails plugin.
 
-As a matter of fact it has been pulled out from an OAuth Rails GEM
-(https://rubygems.org/gems/oauth-plugin https://github.com/pelle/oauth-plugin)
-which now uses this gem as a dependency.
+This gem was originally extracted from @pelle's [oauth-plugin](https://github.com/pelle/oauth-plugin)
+gem. After extraction that gem was made to depend on this gem.
+
+Unfortunately, this gem does have some Rails related bits that are
+**optional** to load. You don't need Rails! The Rails bits may be pulled out
+into a separate gem after the release of version 1.0 of this gem.
 
 ## Usage
 
-We need to specify the oauth_callback url explicitly, otherwise it defaults to
+We need to specify the `oauth_callback` url explicitly, otherwise it defaults to
 "oob" (Out of Band)
 
-    callback_url = "http://127.0.0.1:3000/oauth/callback"
+```ruby
+callback_url = "http://127.0.0.1:3000/oauth/callback"
+```
 
 Create a new `OAuth::Consumer` instance by passing it a configuration hash:
 
-    oauth_consumer = OAuth::Consumer.new("key", "secret", :site => "https://agree2")
+```ruby
+oauth_consumer = OAuth::Consumer.new("key", "secret", site: "https://agree2")
+```
 
 Start the process by requesting a token
 
-    request_token = oauth_consumer.get_request_token(:oauth_callback => callback_url)
+```ruby
+request_token = oauth_consumer.get_request_token(oauth_callback: callback_url)
 
-    session[:token] = request_token.token
-    session[:token_secret] = request_token.secret
-    redirect_to request_token.authorize_url(:oauth_callback => callback_url)
+session[:token] = request_token.token
+session[:token_secret] = request_token.secret
+redirect_to request_token.authorize_url(oauth_callback: callback_url)
+```
 
 When user returns create an access_token
 
-    hash = { oauth_token: session[:token], oauth_token_secret: session[:token_secret]}
-    request_token  = OAuth::RequestToken.from_hash(oauth_consumer, hash)
-    access_token = request_token.get_access_token
-    # For 3-legged authorization, flow oauth_verifier is passed as param in callback
-    # access_token = request_token.get_access_token(oauth_verifier: params[:oauth_verifier])
-    @photos = access_token.get('/photos.xml')
+```ruby
+hash = { oauth_token: session[:token], oauth_token_secret: session[:token_secret] }
+request_token = OAuth::RequestToken.from_hash(oauth_consumer, hash)
+access_token = request_token.get_access_token
+# For 3-legged authorization, flow oauth_verifier is passed as param in callback
+# access_token = request_token.get_access_token(oauth_verifier: params[:oauth_verifier])
+@photos = access_token.get("/photos.xml")
+```
 
 Now that you have an access token, you can use Typhoeus to interact with the
 OAuth provider if you choose.
 
-    require 'typhoeus'
-    require 'oauth/request_proxy/typhoeus_request'
-    oauth_params = {:consumer => oauth_consumer, :token => access_token}
-    hydra = Typhoeus::Hydra.new
-    req = Typhoeus::Request.new(uri, options) # :method needs to be specified in options
-    oauth_helper = OAuth::Client::Helper.new(req, oauth_params.merge(:request_uri => uri))
-    req.options[:headers].merge!({"Authorization" => oauth_helper.header}) # Signs the request
-    hydra.queue(req)
-    hydra.run
-    @response = req.response
+```ruby
+require "typhoeus"
+require "oauth/request_proxy/typhoeus_request"
+oauth_params = { consumer: oauth_consumer, token: access_token }
+hydra = Typhoeus::Hydra.new
+req = Typhoeus::Request.new(uri, options) # :method needs to be specified in options
+oauth_helper = OAuth::Client::Helper.new(req, oauth_params.merge(request_uri: uri))
+req.options[:headers]["Authorization"] = oauth_helper.header # Signs the request
+hydra.queue(req)
+hydra.run
+@response = req.response
+```
 
 ## More Information
 
@@ -314,13 +321,12 @@ immediately released that restores compatibility. Breaking changes to the public
 major versions.  Compatibility with a major and minor versions of Ruby will only be changed with a major version bump.
 
 As a result of this policy, you can (and should) specify a dependency on this gem using
-the [Pessimistic Version Constraint][pvc] with two digits of precision once it hits a 1.0 release.
-While on 0.x releases three digits of precision should be used.
+the [Pessimistic Version Constraint][pvc] with two digits of precision.
 
 For example:
 
 ```ruby
-spec.add_dependency "oauth", "~> 0.5.9"
+spec.add_dependency "oauth", "~> 0.6.0"
 ```
 
 ## License
@@ -364,7 +370,6 @@ Comments are welcome. Contact the [OAuth Ruby mailing list (Google Group)][maili
 [license]: https://github.com/oauth-xx/oauth-ruby/blob/master/LICENSE
 [license-ref]: https://opensource.org/licenses/MIT
 [liberapay_donate]: https://liberapay.com/pboling/donate
-[politicme]: https://nationalprogressiveparty.org
 [pvc]: http://guides.rubygems.org/patterns/#pessimistic-version-constraint
 [rubygems]: https://rubygems.org/gems/oauth
 [security]: https://github.com/oauth-xx/oauth-ruby/blob/master/SECURITY.md

data/SECURITY.md

@@ -2,15 +2,13 @@
 
 ## Supported Versions
 
-| Version | Supported          |
-| ------- | ------------------ |
-| 0.7.x   | :white_check_mark: |
-| 0.6.x   | :white_check_mark: |
-| 0.5.x   | :white_check_mark: |
-| <= 0.5  | :x:                |
+| Version            | Supported          |
+|--------------------| ------------------ |
+| 0.6.x (unreleased) | :white_check_mark: |
+| 0.5.x              | :white_check_mark: |
+| <= 0.5             | :x:                |
 
 ## Reporting a Vulnerability
 
-Peter Boling is the primary maintainer of the this gem.  Please find a way to [contact him directly][contact] to report the issue.  Include as much relevant information as possible.
-
-[contact]: https://railsbling.com/contact
+To report a security vulnerability, please use the [Tidelift security contact](https://tidelift.com/security).
+Tidelift will coordinate the fix and disclosure.

data/bin/oauth

@@ -1,11 +1,15 @@
 #!/usr/bin/env ruby
+# frozen_string_literal: true
 
-require_relative "../lib/oauth"
+require "oauth"
 require "oauth/cli"
 
-Signal.trap("INT") { puts; exit(1) } # don't dump a backtrace on a ^C
-
+# don't dump a backtrace on a ^C
+Signal.trap("INT") do
+  puts
+  exit(1)
+end
 ARGV << "help" if ARGV.empty?
 command = ARGV.shift
 
-OAuth::CLI.new(STDOUT, STDIN, STDERR, command, ARGV).run
+OAuth::CLI.new($stdout, $stdin, $stderr, command, ARGV).run

data/lib/oauth/cli/authorize_command.rb

@@ -1,69 +1,73 @@
-class OAuth::CLI
-  class AuthorizeCommand < BaseCommand
-    def required_options
-      [:uri]
-    end
-
-    def _run
-      request_token = get_request_token
+# frozen_string_literal: true
 
-      if request_token.callback_confirmed?
-        puts "Server appears to support OAuth 1.0a; enabling support."
-        options[:version] = "1.0a"
+module OAuth
+  class CLI
+    class AuthorizeCommand < BaseCommand
+      def required_options
+        [:uri]
       end
 
-      puts "Please visit this url to authorize:"
-      puts request_token.authorize_url
+      def _run
+        request_token = get_request_token
 
-      # parameters for OAuth 1.0a
-      oauth_verifier = ask_user_for_verifier
+        if request_token.callback_confirmed?
+          puts "Server appears to support OAuth 1.0a; enabling support."
+          options[:version] = "1.0a"
+        end
 
-      verbosely_get_access_token(request_token, oauth_verifier)
-    end
+        puts "Please visit this url to authorize:"
+        puts request_token.authorize_url
 
-    def get_request_token
-      consumer = get_consumer
-      scope_options = options[:scope] ? { "scope" => options[:scope] } : {}
-      consumer.get_request_token({ oauth_callback: options[:oauth_callback] }, scope_options)
-    rescue OAuth::Unauthorized => e
-      alert "A problem occurred while attempting to authorize:"
-      alert e
-      alert e.request.body
-    end
+        # parameters for OAuth 1.0a
+        oauth_verifier = ask_user_for_verifier
 
-    def get_consumer
-      OAuth::Consumer.new \
-        options[:oauth_consumer_key],
-        options[:oauth_consumer_secret],
-        access_token_url: options[:access_token_url],
-        authorize_url: options[:authorize_url],
-        request_token_url: options[:request_token_url],
-        scheme: options[:scheme],
-        http_method: options[:method].to_s.downcase.to_sym
-    end
+        verbosely_get_access_token(request_token, oauth_verifier)
+      end
 
-    def ask_user_for_verifier
-      if options[:version] == "1.0a"
-        puts "Please enter the verification code provided by the SP (oauth_verifier):"
-        @stdin.gets.chomp
-      else
-        puts "Press return to continue..."
-        @stdin.gets
-        nil
+      def get_request_token
+        consumer = get_consumer
+        scope_options = options[:scope] ? { "scope" => options[:scope] } : {}
+        consumer.get_request_token({ oauth_callback: options[:oauth_callback] }, scope_options)
+      rescue OAuth::Unauthorized => e
+        alert "A problem occurred while attempting to authorize:"
+        alert e
+        alert e.request.body
+      end
+
+      def get_consumer
+        OAuth::Consumer.new \
+          options[:oauth_consumer_key],
+          options[:oauth_consumer_secret],
+          access_token_url: options[:access_token_url],
+          authorize_url: options[:authorize_url],
+          request_token_url: options[:request_token_url],
+          scheme: options[:scheme],
+          http_method: options[:method].to_s.downcase.to_sym
+      end
+
+      def ask_user_for_verifier
+        if options[:version] == "1.0a"
+          puts "Please enter the verification code provided by the SP (oauth_verifier):"
+          @stdin.gets.chomp
+        else
+          puts "Press return to continue..."
+          @stdin.gets
+          nil
+        end
       end
-    end
 
-    def verbosely_get_access_token(request_token, oauth_verifier)
-      access_token = request_token.get_access_token(oauth_verifier: oauth_verifier)
+      def verbosely_get_access_token(request_token, oauth_verifier)
+        access_token = request_token.get_access_token(oauth_verifier: oauth_verifier)
 
-      puts "Response:"
-      access_token.params.each do |k, v|
-        puts "  #{k}: #{v}" unless k.is_a?(Symbol)
+        puts "Response:"
+        access_token.params.each do |k, v|
+          puts "  #{k}: #{v}" unless k.is_a?(Symbol)
+        end
+      rescue OAuth::Unauthorized => e
+        alert "A problem occurred while attempting to obtain an access token:"
+        alert e
+        alert e.request.body
       end
-    rescue OAuth::Unauthorized => e
-      alert "A problem occurred while attempting to obtain an access token:"
-      alert e
-      alert e.request.body
     end
   end
 end