Skip to main content
  1. Home
  2. Resources
  3. Developers
  4. API Developers Forum

API Authentication STEP 3 ambiguity

Andy Piutau By 
October 13, 2014

 

3. Record the code that comes back

We will redirect him/her to your redirect_uri with a code parameter in its query string, so a request will come through like this:

GET http://www.myapp.com/oauth_callback?code=...

 

There is a minor problem/inconvenience with that process. When client clicked on the authorization url and you redirected a request to the application callback with the code, there is no information who authorized that.

This is probably OK for entirely manual registration, however it would be really helpful to attach a client slag '{slug}.nationbuilder.com' which I generated the Authorization request for:

GET http://www.myapp.com/oauth_callback?code=...&client={slug}.nationbuilder.com

 

 

Showing 2 reactions

How would you tag this suggestion?

Sign in with

Please check your e-mail for a link to activate your account.
  • Arion Hardison
    commented
    Do you mean like this ‘/api/v1/people/me?access_token=’?
    posted 2014-10-14 09:10:39 -0700
  • Andy Piutau
    commented
    never mind and found a workaround posted on ‘OAuth Callback with App Id’ to pass it with return url.
    posted 2014-10-14 04:57:44 -0700