Sauyon Lee

It's just a pain because it means authenticating twice (once with oauth and then again with user/pass)

I'll take a look with fiddler and try to figure out both password auth for music manager and album art quickly.

Looks like we need to upload some sort of hash of the album art... It _looks_ like a sha256 hash, but I tried hashing an image and it doesn't match...

http://simg.co.nr/s/500x500.jpg GMusic sum: 6cf4218124657ff0ac54ac40efe194c345e96e21b981b02e45a9aaae80b3f521 sha256sum: 6a4cb8e33bf6b926fd0d495e51a692e87c6423d3987fea5a3a7a3a2d689a38e2 Edit: uploaded the non-stripped version accidentally, so updated to reflect stripped version.

And the sum for the uploaded file after downloading from Google's servers [here](https://lh6.googleusercontent.com/oAVhOyvoQiiiF_YqUcDSSVImLzpP3teSQQKhDgm6N9X4XF9OE_T-xxaVwvK-=s512-c-e100-nu): 865d4ac503ff7160d762b416b9079108676d3dcf58503569ae7e5d99c27446bc !?!??!?!!?!?!!

Update: I'm stupid - running a simple `mogrify -compress JPEG 500x500.jpg` gets the same result as the google server version.

Not far at all. I think it's pretty much a hit or miss at this point, and it looks like the webclient actually uploads using a non-compliant hash as well,...

I agree. In fact, I think we should have the entire call logic - what to send, as well as what you receive. It would help people trying to port...

I'm willing to handle this if you'd like (I've pretty much given up on trying to figure out #242, and I'm pretty free these days)

To your mocking points (EDIT: pun not intended), the mock would maintain an internal state and ensure that the correct operations have been completed. This means that when, say, somebody...