#231 Support for LinkedIn Field-Selector Notation

devatwork · devatwork · commit 48524edbe063 · 2012-04-16T11:59:49.000+02:00
Fixes the broken .NET RFC 3986 encoding for Uri.EscapeDataString
diff --git a/RestSharp/Authenticators/OAuth/OAuthTools.cs b/RestSharp/Authenticators/OAuth/OAuthTools.cs
@@ -83,16 +83,42 @@ public static string GetTimestamp(DateTime dateTime)
 			return timestamp.ToString();
 		}
 
+		/// <summary>
+		/// The set of characters that are unreserved in RFC 2396 but are NOT unreserved in RFC 3986.
+		/// </summary>
+		/// <seealso cref="http://stackoverflow.com/questions/846487/how-to-get-uri-escapedatastring-to-comply-with-rfc-3986" />
+		private static readonly string[] UriRfc3986CharsToEscape = new[] { "!", "*", "'", "(", ")" };
+
 		/// <summary>
 		/// URL encodes a string based on section 5.1 of the OAuth spec.
 		/// Namely, percent encoding with [RFC3986], avoiding unreserved characters,
 		/// upper-casing hexadecimal characters, and UTF-8 encoding for text value pairs.
 		/// </summary>
-		/// <param name="value"></param>
+		/// <param name="value">The value to escape.</param>
+		/// <returns>The escaped value.</returns>
+		/// <remarks>
+		/// The <see cref="Uri.EscapeDataString"/> method is <i>supposed</i> to take on
+		/// RFC 3986 behavior if certain elements are present in a .config file.  Even if this
+		/// actually worked (which in my experiments it <i>doesn't</i>), we can't rely on every
+		/// host actually having this configuration element present.
+		/// </remarks>
 		/// <seealso cref="http://oauth.net/core/1.0#encoding_parameters" />
+		/// <seealso cref="http://stackoverflow.com/questions/846487/how-to-get-uri-escapedatastring-to-comply-with-rfc-3986" />
 		public static string UrlEncodeRelaxed(string value)
 		{
-			return Uri.EscapeDataString(value);
+			// Start with RFC 2396 escaping by calling the .NET method to do the work.
+			// This MAY sometimes exhibit RFC 3986 behavior (according to the documentation).
+			// If it does, the escaping we do that follows it will be a no-op since the
+			// characters we search for to replace can't possibly exist in the string.
+			StringBuilder escaped = new StringBuilder(Uri.EscapeDataString(value));
+
+			// Upgrade the escaping to RFC 3986, if necessary.
+			for (int i = 0; i < UriRfc3986CharsToEscape.Length; i++) {
+				escaped.Replace(UriRfc3986CharsToEscape[i], Uri.HexEscape(UriRfc3986CharsToEscape[i][0]));
+			}
+
+			// Return the fully-RFC3986-escaped string.
+			return escaped.ToString();
 		}
 
 		/// <summary>
