A small django application for verifying oauth signed request in Google App Engine Environment. It also enables you to associate opensocial user (domain:opensocial_viewer_id style) with django user on GAE.

You can add gaeoauth.middleware.OpenSocialVerifySignatureMiddleware to MIDDLEWARE_CLASSES in your settings.py to verify oauth signed request from outside.

You can use gaeoauth.decorators.request_must_be_signed decorator for protect your view from bogus request. It returns django's HttpResponseForbidden when the request is not properly signed.

Gaeoauth supports both of RSA-SHA1 and HMAC-SHA1 signing methods, includes public keys of iGoogle, orkut, and hi5. You can also register your consumer secret in the GAE's Datastore.