Hi, I am trying to implement Oauth 2.0 authorization. I am not familier with it.I have referred below link on lithosphere :http://community.lithium.com/t5/Community-API-v2/OAuth-2-0-authorization-grant-flow/ta-p/138402 Done POST call through 'poster'(add on) on Firefox using following details :URL : https://<community_url>/auth/oauth2/authorizeclient_id=<client_ID_of_community>response_type=coderedirect_uri=https://<community_url>/getaccesstoken But facing issue to get authorization code, which is very first step of OAuth 2.0 authorization grant flow.Am I going in right way ?I have confusion about 'redirect_uri' parameter. What it should be ? Let me know if you have any suggetion for the same.Thank you in advance. Regards,Vishwajeet.

Did you ever find out how to make the call? I'm having the same issue and it is so frustrating :(

Hi , Looks like Lithium oAuth 2.0 code authorization service is broken, I am trying to enable backend api flow. And after logging in I am being redirected to the redirect uri, I looked at the Uri redirect that i got back, and it does not have authorization code. https://<Community_Url_without_https>/t5/oauth/2userauthorizationpage?response_type=code&client_id=<client_id>&redirect_uri=<Community_Url_without_https> 1. I am authorized inside my network and SSO enabled with my AD network. ==> I am not an admin, I have client_id, secret and tenant id for oauth work flow.2. I explicitly signed of and signed in several times but it does not make any difference here I appreciate if some one can take a quick peek, and send me a private message, as this looks to be a blocker for many to onboard a backend api flow. ThanksRaj

Hi rajpi, Not exactly. I don't remember the details, but I think I was trying to get the token to do some editing actions on community, but I was using a component and I belive that was the issue. I was told the call has to come from a back-end evironment (can't use an endpoint either). So I ended up building the component in a way where I have to manually log in to the community before using it.

Hi fuenteso I got the Oauth issue resolved, error was with appropriate permissions on the account and also some extra characters that went in the client id. Here is how I solved this issue, this may be useful to someone. Log into community and then run the following call in your browser (be sure to add the URL encoded client ID and you can leave the redirect uri as is):Get Authorization Code:GEThttps://<communityname_withouthttps>/auth/oauth2/authorize?client_id=<urlencodedclient_id>&response_type=code&redirect_uri=<exact_callbackuri_with_https_nothingextra>You should receive an authorization code that can be leveraged to obtain the access & refresh tokenshttps://api.lithium.com/auth/v1/accessTokenHeader:Content-Type : application/jsonclient_id : <client_id_without_encoding> Body ==> JSON(application/json){"client_id":"<client_id>","client_secret":"<client_secret>","grant_type":"authorization_code","redirect_uri":"<redirect_url>","code":"<AuthCode>"}ThanksRaj

Hey Vishwajeet What community are you trying this for? The redirect_url would have been defined for your community when the client id was set up. If you didn't provide us with one when requesting your client id and secret, normally we would have just used your base community url, but I can check this for you. Thanks Noaman

Oauth 2.0 : facing issue to get authorization code

NoamanA
Lithium Alumni (Retired)
10 years ago
Hey Vishwajeet

What community are you trying this for? The redirect_url would have been defined for your community when the client id was set up. If you didn't provide us with one when requesting your client id and secret, normally we would have just used your base community url, but I can check this for you.

Thanks

Noaman
- vishwajeet_hol
  Expert
  10 years ago
  Hi NoamanA,
  
  Can you please check the redirect_uri of our community.
  Here, we tried with base_url of community.
  URL used :
  https://<community_base_url>/auth/oauth2/authorize?client_id=<client_ID>&response_type=code&redirect_uri=<community_base_url>
  
  And Got this error.
  Could you please provide us the sample URL for this call.
  Also is there any particular configuration for this in Admin console, where we can get the values of client_ID, redirect_uri, etc.
  
  Thank you.
  
  Regards,
  Vishwajeet.
  - NoamanA
    Lithium Alumni (Retired)
    10 years ago
    Hey Vishwajeet
    
    Unfortunately, there isn't a customer facing portal for you to retrieve your client id and url. You didn't specify which community you are talking about but I think it's Comity?
    
    The redirect url should be entered as comity.stage.lithium.com (I assume you are working on stage?).
    
    If you still encounter issues, please respond back to the Support ticket where we first provided you the client id details. We might need to share confidential details like your client id for example, which we cannot do over a public forum like this.
    
    Regards
    
    Noaman
vaishnavi
Expert
9 years ago
Hi @NoamanA,,
I am facing same issue.

I tried below steps :-
1. login into community

2. send GET request from postman/poster for below URL
https://comity.stage.lithium.com/auth/oauth2/authorize?client_id=cpmmunity_cliend_id&response_type=code&redirect_uri=https://comity.stage.lithium.com/getaccessToken

3. Getting below error in response.
Status : 500 Internal Server Error
An Unexpected Error has occurred. - comity

Please guide me.

Thanks,
Vaishnavi
- vaishnavi
  Expert
  9 years ago
  
  Hi,
  I am able to get the authentication code now.
  
  URL I hit from browser (GET call) :-
  http://comity.stage.lithium.com/auth/oauth2/authorize?client_id=[url encoded client id]&response_type=code&redirect_uri=comity.stage.lithium.com
  
  I got redirected to another URL, which contains the authentication code :-
  http://comity.stage.lithium.com/t5/oauth/comity.stage.lithium.com?code=[url encoded authentication code]&user-id=15&tenant-id=comity
  
  I am not getting expected response for next step.
  Step 2 POST /accessToken
  poster call :
  URL : http://comity.stage.lithium.com/auth/v1/accessToken
  example request -
  LJdishd:~ joan.doe$ curl -X POST -H "Content-Type: application/json" -H
  "client-id: Fblkh30GinF48502kEsk4FmGslkjdfjasdj=" -d '{"client_id" :"Fblkh30GinF48502kEsk4FmGslkjdfjasdj=",
  "client_secret" :"FKDDASDK309slkdfaDkdlkjie92=","grant_type" : "authorization_code",
  "redirect_uri" :"http://redirect.example_community.com/getaccessToken",
  "code":"i7liaoFaOjG6yDKN4tQYXrhewKog3k4ryYGWLS6hbrI="}' "http://comity.stage.lithium.com/auth/v1/accessToken"
  expected response
  {
  "response": {
  "status": "success",
  "message": "OK",
  "http_code": 200,
  "data": {
  "access_token": "o5IV0yIiNDj/5lNJ6doJh08LX6SsDwtkDXDVmhGvRtI=",
  "expires_in": 86400,
  "lithium_user_id": "2d8c95ed-21dc-4ba6-ab9f-d3eff9c928ce",
  "refresh_token": "XAAWIWKr38W33SlqYooR9OEJW0um9DoyB/o843rdIxk=",
  "token_type": "bearer"
  }
  }
  }
  actual response I am getting is HTML of my community home page.
  
  Am I missing anything? Has anyone faced the same issue?
  Any pointer are welcome.
  
  Thanks,
  Vaishnavi
  - ayshe
    Lithium Alumni (Retired)
    9 years ago
    Hi Vaishnavi,
    
    I am far from being an expert on the area, but I think your URL needs to be: https://api.stage.lithium.com/auth/v1/accessToken
robertcavanna
Mentor
7 years ago
I've been struggling with this error for a couple of weeks. I was finally able to get a code. The trick was making sure that the Client ID was URL encoded. The redirect_uri must NOT be encoded. Once I did that, the response has the code I was looking for in the URL. This conflicts with the developer documentation which shows an un-encoded client ID and an encoded return_uri.

https://community.lithium.com/t5/Developer-Documentation/bd-p/dev-doc-portal?section=oauth2

Forum Discussion

Oauth 2.0 : facing issue to get authorization code

Related Content

OAuth in python

Facing issues Downloading a file with third party API

Oauth Access Confirmation Page

generated OAuth acces_token expires after 24 hours

Best Practices for adding a 2nd Font-Face?

Recent Discussions

API v1 docs gone since Atlas migration to Aurora

Does anyone know how to change the display title of Custom Fields in Aurora?

Can someone walk me through authenticating and using Postman with Aurora?

Seeking Advice on Restricting Access to a posts to those who have the permalink.

TinyMceEditor is undefined