Here is a 2-legged OAuth Javascript function that makes it easy to get YQL results into your Javascript application.
First we want to include the oauth javascript libraries obtained from http://oauth.googlecode.com.
<script type="text/javascript" src="http://oauth.googlecode.com/svn/code/javascript/oauth.js"></script> <script type="text/javascript" src="http://oauth.googlecode.com/svn/code/javascript/sha1.js"></script>
It’s probably best to download those files to your local server, instead of calling them directly from googlecode in this example.
We then want to use function makeSignedRequest to make the signed URL string to query.yahooapis.com so we can get the YQL results.
<script type="text/javascript"> var makeSignedRequest = function(ck,cks,encodedurl) { var accessor = { consumerSecret: cks, tokenSecret: ""}; var message = { action: encodedurl, method: "GET", parameters: [["oauth_version","1.0"],["oauth_consumer_key",ck]]}; OAuth.setTimestampAndNonce(message); OAuth.SignatureMethod.sign(message, accessor); var parameterMap = OAuth.getParameterMap(message); var baseStr = OAuth.decodeForm(OAuth.SignatureMethod.getBaseString(message)); var theSig = ""; if (parameterMap.parameters) { for (var item in parameterMap.parameters) { for (var subitem in parameterMap.parameters[item]) { if (parameterMap.parameters[item][subitem] == "oauth_signature") { theSig = parameterMap.parameters[item][1]; break; } } } } var paramList = baseStr[2][0].split("&"); paramList.push("oauth_signature="+theSig); paramList.sort(function(a,b) { if (a[0] < b[0]) return -1; if (a[0] > b[0]) return 1; if (a[1] < b[1]) return -1; if (a[1] > b[1]) return 1; return 0; }); var locString = ""; for (var x in paramList) { locString += paramList[x] + "&"; } var finalStr = baseStr[1][0] + "?" + locString.slice(0,locString.length - 1); return finalStr; }; </script>
Here is an example of how to call the function.
makeSignedRequest("<API Key HERE>","<Shared Secret HERE>","<YQL URL HERE>");
If you havn’t already created your API key and Shared Secret, you can do so by going here. Use the URL from the YQL console, located in the textarea to the right of where you enter the query.
<script type="text/javascript"> var signedURL = makeSignedRequest("dj0yJmk9Rm1MUU9iWmdNZ2FjJmQ9WVdrOVZWWk9Wa3h5TldFbWNHbzlNVEk0TXpNMk1EYzFPQS0tJnM9Y29uc3VtZXJzZWNyZXQmeD1kMg--","570e2ef3db460b114e6a0a987709a0f6a90b5ec0","http://query.yahooapis.com/v1/yql?q=select%20*%20from%20search.news%20where%20query%3D%22obama%22&format=json&callback=myCallback"); </script>
And it’s easy as that! You then can make cool apps that use dynamic script nodes to bring in the YQL data.
Here is a sample app created with all the ingredients from above.
4 Comments
First, thanks.
To you and Mr. Jonathan. I finally have examples of Oauth using javascript, just to tests ideas simply without the need to do intricate things
GOOD JOB!~ this will help a lot!~
Thanks for posting this. It helped a lot!
Paul,
I’ve stolen your code and made it into a little twitter page.
http://www.infonote.com/yqltweet.htm
It’s helped me a lot to understand the Oauth requirements, many thanks.
One Trackback
[...] try things out away from the console and my colleague Paul has created some simple sample code for executing 2-legged oauth queries from javascript that enables you to call YQL functions without needing a server. Its as easy as: var [...]