Forum Discussion

fcaelen's avatar
fcaelen
Mentor
6 years ago

OAuth in python

Hi! I am writing a small script in Python to retrieve data from the REST API. For instance, I need to do some v2 requests like "SELECT id,post_time,subject,author,status,body,kudos,labels FROM messa...
  • fcaelen's avatar
    fcaelen
    6 years ago

    I finally found the issue 😀 In the header, the client ID should be declared as 'client-id' and not 'client_id' as it is in the body. The other issue was that the code expires quickly and I tried to use it during a too long time which made my tries useless (I tried before 'client-id' without success because the code had already expired).

sparsht's avatar
sparsht
Guide

Hi fcaelen ,

First of all the token URL isn't correct and incomplete as well.

For OAuth 2.0, You need to follow the steps mentioned

1. hit the following URL manually or can make a GET request script :- 

https://myCommunity/auth/oauth2/authorize?client_id=[CLIENT_ID]&response_type=code&redirect_uri=[REDIRECT_URI]

[REDIRECT_URI] is the URL you provide while registering your App under ADMIN>SYSTEM>API Apps .

It will redirect to the the provided [REDIRECT_URI] with code and tenant ID.

For Example -

https://[REDIRECT_URI]?code=[authorization_code]&tenant=[tenant_Id]

Fetch the "authorization code" which is URL Encoded (decode it into string) and pass it as described below in Step 2.

2. Make a POST Request to the given URL. Find the sample code below.

import requests
ACCESS_TOKEN_URL = "https://api.lithium.com/auth/v1/accessToken"
requests.post(
ACCESS_TOKEN_URL,
headers = {"Content-type" : "application/json", "client_id" : "[CLIENT_ID]"},
data = { 
    "code" : "[authorization_code]", 
    "client_id" : "[CLIENT_ID]",
    "client_secret" : "[CLIENT_SECRET]",
     "redirect_uri" : "[REDIRECT_URI]",
     "grant_type" : "authorization_code"
}
)

 

ACCESS_TOKEN_URL for stage will be "https://api.stage.lithium.com/....."

Sample Response Body on success

{ 
    "response": { 
        "status": "success", 
        "message": "OK", 
        "http_code": 200, 
        "data": {
            "access_token": "o5IV0yIiNDj/5lNJ6doJh08LX6SsDwtkDXDVmhGvRtI=", 
            "expires_in": 86400, 
            "lithium_user_id": "2d8c95ed-21dc-4ba6-ab9f-d3eff9c928ce", 
            "refresh_token": "XAAWIWKr38W33SlqYooR9OEJW0um9DoyB/o843rdIxk=",
            "token_type": "bearer" 
        }
    }
}

"access_token" will be used to make the calls.

Accept it as solution if it solves your query.

Thanks

fcaelen's avatar
fcaelen
Mentor
6 years ago

thanks sparsht :smileyhappy:

but even step 1. doesn't work. I even tried in a browser

https://myCommunity/auth/oauth2/authorize?client_id=[CLIENT_ID]&response_type=code&redirect_uri=[REDIRECT_URI]

with my client id and the redirect URI of my API App but I get an error:

 

Any idea?

I have also tried different redirect URIs: https://myCommunity.com/ or https://myCommunity.com/getaccessToken but still the same.

thanks!

  • sparsht's avatar
    sparsht
    Guide
    6 years ago

    fcaelen Hi there ! It seems like you have missed something or I haven't been able to explain properly.

    https://myCommunity.com/auth/oauth2/authorize?client_id=LFE0UbsMFc9uDhsZLu03q4565ZZjO78svn7RFDRs=&response_type=code&redirect_uri=https://wt-c12345.sandbox.auth0-extend.com/lithium-integrate

     Make sure sample code is like this. I have tried and it's working fine for me. ID and Redirect URI should be the same as mentioned in API App under  ADMIN>SYSTEM>API Apps.

    • fcaelen's avatar
      fcaelen
      Mentor
      6 years ago

      Yes, I have replaced the Community URL, the client id and the redirect URI but I get the error.

      • fcaelen's avatar
        fcaelen
        Mentor
        6 years ago

        hi sparsht. I could finally get the code, my mistake was that I had to encode my client id (it ends with a "=").

        So, I tried the sample code

        ACCESS_TOKEN_URL = "<a href="https😕/eu.api.lithium.com/auth/v1/accessToken" target="_blank">https😕/eu.api.lithium.com/auth/v1/accessToken</a>"
r = requests.post(
ACCESS_TOKEN_URL,
headers = {"Content-type" : "application/json", "client_id" : client_id},
data = {
"code" : code,
"client_id" : client_id,
"client_secret" : client_secret,
"redirect_uri" : redirect_uri,
"grant_type" : "authorization_code"
}
)

        but I get an error saying it doesn't support Json:

        400 Bad Request
        {"code":400,"message":"Unable to process JSON"}

         

        Any idea? thanks