You'll be signing requests. Any OpenID or OAuth library will have code which does that - if not a separate library, something you can rip out, even though you're not using the protocol flow. Alternately, there's demo code for Amazon AWS clients in their developer docs which also signs requests with API keys and timestamps. It's the same process on the client or server side - comparing a hash with the original - so you'll probably just have to translate their request model to whatever your framework uses. Neither of these are exactly what you're asking for, but it's a start.
- Karl Anderson
For searches, at least, they'll throw up a captcha if anyone from your IP is acting like a robot, and you probably can't control who shares the IP you're behind. So it might not depend on anything you do.
- Karl Anderson