Are you sure you do not need any other cookies?

Are you sure it's not HTTPS?

Maybe you should parameter-encode the parameters (e.g.
`UserID=#{CGI.escape user}` instead of `UserID=#{user}`)?

Are you calculating the SHA1 correctly (maybe you should strip
whitespace off the body)?


These just off the top of my head. Also, we could help you better if
you provided the URL of the API. Also, consider using RestClient or
some other sensible means of consuming APIs (standard Net::HTTP is
quite low-level).


-- Matma Rex