Let me guess, more oauth 1-related suffering? 🙂

Sort of, request signing is one part - though not a solid requirement. The other is call logging - I have a strong preference for logging the request body along with the request before the call is processed - so trying to achieve that