How is OAuth 2 different from OAuth 1?

In very simple terms, can someone explain the difference between OAuth 2 and OAuth 1? Is OAuth 1 obsolete now? Should we be implementing OAuth 2? I don't see many implementations of OAuth 2; most...

getting Google oauth authorization token from Android- return with invalid_scope/ Unknown error

I try to use Google oauth to authenticate users on my android app. Then I would like to send it to my app server so it can connect at any time with Google calendar. I tried to use ...

Saving user names for Google OAuth2 WebServerFlow

I have implemented Google's OAuth2 procedure in Python (see this link for tutorial on using OAuth2WebServerFlow: https://developers.google.com/api-client-library/python/guide/aaa_oauth) but cannot...

HATEOAS methods not found

My controller can't seem to find the HATEOAS methods like "linkTo". Am I missing something? pom.xml <?xml version="1.0" encoding="UTF-8"?> <project xmlns="http://maven.apache.org/POM/4.0.0"...

OAuth or JWT? Which one to use and why?

I am starting to learn about token based authentication and I am trying to learn how to implement it in Laravel 5. I have come across two very popular technologies for doing this but I am confused...

What Redirect URL can I set for oauth2 callback in a chrome extension?

I want to use Imgur API in a chrome extension. The authentification response from user's input is sent to a "redirect url" set up in my application profile on the imgur web page. How can I set...

Is it possible to use OAuth 2.0 without a redirect server?

I'm trying to create a local Java-based client that interacts with the SurveyMonkey API. SurveyMonkey requires a long-lived access token using OAuth 2.0, which I'm not very familiar with. I've...

How to validate Azure AD security token?

The following code gives me Azure AD security token, I need to validate that token is valid or not. How to achieve this? // Get OAuth token using client credentials string tenantName =...

Does AOL mail allow oauth/3rd party application access

I am wondering if AOL has had any recent changes that allow 3rd party developer access to accounts. Do they allow 3rd party applications that would access messages, via accesstokens and...

Does the refresh token expire and if so when?

I have read the PODIO documentation. I have in particular contemplated the following statement concerning use of the refresh_token: This request returns the same data as above, and you can...

Python Requests OAuth2Session() passing multiple scope arguments

I have successfully authorized an API connection using "data_read" as a scope, however I am having issues passing multiple scope parameters ("data_read" and "data_write") into the OAuth2Session()...

With Passport, what is the purpose of serializing a user if i'm authenticating with tokens?

I'm using passport-google-oauth20 as the sole form of authentication for my app. Everything seems fine, and I'm able to authenticate a user and store him in the DB with the verify callback...

Certificate fingerprint is invalid?

I have generated my SHA1 code from my keystore but when I try to create an OAuth client 2.0, Google game console is giving me the error: "Certificate fingerprint is invalid". Anyone knows why...

Do we use "scope" for client credential grant type? Why?

In most OAuth2 typical use cases, the scope is used by resource owner password grant type, or authorization code flow, where a user login is required. It seems that scope is mainly used to control...

Scopes Not Returned w/ Client Credential Flow

Can I define custom scope(s) and have them returned when using the client credential flow in Azure AD? In my experiment, I configured 2 Azure AD applications, one for a Web API and one for a...

Making OAuth2 Request to Discord with Authorization code to get Access Token | C# ASP.NET MVC

I am working on a project that connects to Discord's OAuth API via C# ASP.NET MVC. I am having trouble formatting my post request so that it doesn't return an HTTP error 400 (bad request). I have...

Connecting rest api oauth2.0 with power bi gives SSL error

I am trying to connect with SAP Hybris REST API to power bi, below is my query let token_url = "https://localhost:9002/authorizationserver/oauth/token", api_base_url =...

How to verify flutter app with OAuth 2.0 to access Gmail api?

For the past week, I have been trying to access Gmail api but it seems impossible. It's do-able in web app but for installable app, no luck. I have used about all plug ins there is and read...

How to connect API from PowerShell with OAUTH 2.0?

I am new in powershell, I need to connect to an API that has OAUTH2.0 authentication, the API generates a file in json format. If I run the script from POWESHELL ISE it works correctly, it...

How to catch OAuth2 token in Flutter Web?

This dependency supposedly supports web, but the implementation to listen for the callback and retrieve the token is missing. After digging around for the last three days, a few people suggested...

invalid_client when requesting Amazon Cognito token with code from java spring back end

I get {"error":"invalid_client"} error when I'm running this: public static HttpResponse<String> getAuthToken(@NonNull final String redirectUri, @NonNull final String code) { return...

Social login api from keycloak

I want to use keycloak social login from react js client side and backend side node js. I can't find any way of generating the red marked link from...

Refresh Token is not returned in @azure/msal-node using Authorization code flow?

In example project provided by Microsoft here which uses Authorization code flow the acquireTokenByCode method does not return refresh tokens. From @azure/msal-node here refresh token is not...

i want get token Oauth2 by postman

I am trying this way to get a token, but there is some problem in accessing the client i can Login from Login layout i can access by username= admin and password= admin but in the post man i...

Can I use Authorization Code with PKCE Flow for mobile app?

I know that OAuth 2.0 Authorization Code with PKCE Flow is the best practice of OAuth. We plan to use it for our WEB application. But I don't understand how can I use this flow for native UX my...

Spring boot app with OAuth 2.0 Azure AD Authentication throws invalid credentials when deployed on AWS ECS Service configured with a Load Balancer

We have implemented Azure AD OAuth 2.0 authentication in spring boot application. It gives the Microsoft login. After entering credentials it takes to page. https://xxx.xxx.xxx/login?error#. This...

Google Token has been expired or revoked : invalid_grant

Even if I specified my Client_id and Client_Secret, my refresh token still expires or being revoked after approximatively one hour. I've tried all the possible solutions found on google but still...

JS How to get discord account data via oauth2

I am developing a moderation bot for discord, I am trying to create a paid plan and therefore I need users to log in with their discord account with oauth2 so that I can fetch user data and know...

YouTube API - The API Key and the authentication credential are from different projects

I am trying to get videos from youtube with my C# application, with...

How can I Retrieve Access Token with password credentials in Postman for Azure AD B2C?

Question: What I am trying to perform? Answer: I am trying to automate the retrieval of Auth Bearer token for API testing Current Scenario: I have followed this wiki...