Verifying oauth_signature in LTI Launch

chrisrockwell
Community Explorer

I am struggling to properly verify an oauth signature.  What I have done so far...

  1. Added an LTI app via Paste XML and provided a consumer key and shared secret
  2. Tried to verify the oauth_signature that is passed by Canvas on the launch

I'm using C#/.net-core and libraries for this seem to be non-existent.  I've attempted to use https://github.com/davemateer/oauth_1_utility_netcore/blob/master/OAuth1Utilities.cs to verify the signature but not having any luck.

If anyone has examples of doing this in .net I'd greatly appreciate seeing them.  I have seen implementations in Ruby but these use a Ruby library for verifying the signature. 

There is a post here: https://community.canvaslms.com/t5/Developers-Group/Verifying-OAuth-Signature/td-p/102280 but I don't see any solutions, only that the author was able to find one.

Labels (1)