by Jake Dallimore.
Hi Paul,
If you're testing locally, there's always "Blocked hosts" and "Allowed ports" to consider (Under "HTTP Security"). We block localhost access via those settings by default.
Given the error you see mentions an invalid signature, I'd be double checking that the secret you've used in the tool configuration in Totara matches the secret generated on the Legacy published tools view in the tool site. The consumer key can be anything you like, however.
If you're testing locally, there's always "Blocked hosts" and "Allowed ports" to consider (Under "HTTP Security"). We block localhost access via those settings by default.
Given the error you see mentions an invalid signature, I'd be double checking that the secret you've used in the tool configuration in Totara matches the secret generated on the Legacy published tools view in the tool site. The consumer key can be anything you like, however.