You’re offline. This is a read only version of the page.
24
I am trying to get flow Oauth2 generic to connect to an API which uses Authorization Code Grant RFC 6749.
The authorization works fine and the initial connection is made. But the token pass off does not work.
Can a custom connection from flow work with Authorization Code Grant. This spec says "The client makes a request to the token endpoint by sending the following parameters using the "application/x-www-form-urlencoded" format per Appendix B with a character encoding of UTF-8 in the HTTP request entity-body: "
This is so close to working, I have tried everything I can think of to make this work. Can it be done? If so what am I not doing correctly.
Share
Report{
"swagger": "2.0",
"info": {
"description": "...........
"version": "0.1",
"title": "flow"
},
"host": "######################.com",
"basePath": "/webresources/api/v3/sites/current",
"schemes": [
"https"
],
"consumes": [
"application/x-www-form-urlencoded"
],
"produces": [
"application/json"
],
"paths": {
"/faqs": {
"post": {
"tags": [
"FAQs"
],
"summary": "FAQs Create",
"description": "Using this method you can add an FAQ item to your site.\n",
"operationId": "AddFAQ",
"parameters": [
{
"name": "id",
"in": "query",
"description": "id identifier number",
"required": true,
"type": "integer"
},
{.....
"securityDefinitions": {
"oauth2": {
"type": "oauth2",
"authorizationUrl": "https://........com/api/oauth/authorize%3fversion%3D0.1",
"tokenUrl": "https://.........com/api/oauth/token",
"flow": "accessCode",
"scopes": {}
}
},
"security": [
{
"oauth2": []
}
],
"tags": []
}Json above is shorted to keep it brief.
Sorry this is in the wrong thread Board but now I cannot change it.
Any help would be great.
Hi Kris,
I think I may have found the issue, The redirect URI may not be the same between the authorization code step and the access code step.
Adobe mentioned something about this in testing but intially I did not get it. But there may just be due to url over encoding issue.
The url for the Authorize step is As follows.
Green To highlight the Redirect
Orange encoded Once
Blue encoded twice
Red encoded Thrise
https://domain.com/Admin/GenericLogin.aspx?URL=%2fPartner%2fOAuth%2fAuthorize.aspx%3fclient_id%3dCID%26response_type%3dcode%26redirect_uri%3dhttps%253a%252f%252faustralia-001.consent.azure-apim.net%252fredirect%26scope%3d%26state%STATE%26from%3dhttps%253a%252f%252fHOST%252fapi%252foauth%252fauthorize%253fclient_id%253dCID%2526response_type%253dcode%2526redirect_uri%253dhttps%25253a%25252f%25252faustralia-001.consent.azure-apim.net%25252fredirect%2526scope%253d%2526state%253dSTATE
Now as per the Spec adobe wants the Redirect to be the same But the encoding may be causing the issue.
I need to find out where it is being encoded multiple times in the authorize. So need to see the output from flow.
And also need to see the request for the token to see if it is different from the Authorize redirect URI.
If not then it is happening at adobes end. Or am I doing something wrong?
Any help would be great.
Hi Kris
Flows Custom connection settings below
Because Flow demands a refresh URL I have put the token URL in both. But from what I can tell Authorization Code Grant does not use one.
So the Authorize connection works. But when an end point is used or tested I get a 401. Which makes sense because when tested in Postman to authorize and get token I get a 500 error on the token POST. "An internal error has occurred at the service. Retry the request." And I have tried and tried.
This is what I get in postman
I cannot be sure the error is related to postman or if it the same as flow (although seems likely it is) this is why I need data like this from the custom connector itself.
Both Adobe and myself have tested the API in other ways and it is working. What BC wants from the Authorize and token requests looks in line with what you have provided and can be seen here. https://github.com/adobebc/web-apps-sdk/blob/master/samples/bc-external-service/public/js/oauth.js it is pretty simple and looks like what you referenced to here regarding bing ads for Authorization Code Grant https://docs.microsoft.com/en-us/bingads/guides/authentication-oauth
In flow I cannot seem to see the token request. Can I see this anywhere? Can you? This would help confirm, check and test.
Any help would be great.
Hi @digitalfuel,
Could you please share a bit more about error message if the error message exists?
Do you not use the access token to access the resource?
If your request to resource doesn’t include authentication credentials or is missing the token, the resource would not be obtained. More details about using the access token to access the resource, please check the following article:
Please check if you have passed proper token value to access the resource. In addition, please check and see if the following article would help in your scenario:
https://docs.microsoft.com/en-us/bingads/guides/authentication-oauth
More details about error codes for token endpoint errors, please check the following article:
Use the authorization code to request an access token
Best regards,
Kris
#1
WarrenBelz
146,587
Most Valuable Professional
#2
RandyHayes
76,287
Super User 2024 Season 1
#3
Pstork1
65,928
Most Valuable Professional
All responses (
Answers (
