Access Token is the last token acquired during the OAuth authentication process.
Questions tagged [access-token]
4002 questions
1
vote
1 answer
How to download Slack history messages if you are not the app admin?
I am trying to download the history messages for a specific Slack app, let's say MLflow.
I found a few open-source tools on Github but none of them actually work for me. It seems that slack has disabled ways for non-admin to create the access token…
Jimmy Zhao
- 303
- 2
- 17
1
vote
0 answers
Invalid client Zoom Post request
I try to get acces token from the zoom api with a post request but i don't understand why i have this error:
reason: 'Invalid client_id or client_secret',
error: 'invalid_client'
My code :
let clientID = "exemple"
let clientSecret =…
SLSofiane
- 49
- 5
1
vote
0 answers
not able to receive access token on my node.js app
guys since its my org code so I cannot share all my code but the gist of the issue is I have deployed a node.js app on gcp with env: flex (this env:flex is supposed to be configured on app.yaml) and with flex everything was working great but as soon…
Abhishek Sah
- 31
- 6
1
vote
1 answer
In OpenAPI, when using OAuth 2.0, how do you describe the exact mechanism that should be used to authorize requests to a resource server?
Let's say a client, which is our trusted BFF (backend for frontend), uses the Resource Owner Password Credentials Grant to obtain an access token by requesting an authorization server's /token endpoint. Further, the following usually happens - the…
fallincode
- 379
- 4
- 14
1
vote
2 answers
Azure access_token contains info that I thought would be in the id_token, and vice-versa
When requesting a token and id_token from Azure using the implicit grant flow using a request…
a344254
- 571
- 2
- 9
- 20
1
vote
0 answers
Invalid Token Java Post Get/Post Request
I am new to Rest API based on Java. The purpose is to obtain an access token from a particular API Token URL by sending a POST request. However, upon running the following program, the access token cannot be used (invalid token) after executing the…
undernameray
- 11
- 4
1
vote
0 answers
How can i consult data from an Oauth2.0 api in multiple pages using only one access token in react?
I need to create an access token and use him to get infos from an api in multiples pages. I made the access token by this code
(async () => {
const clientId = 'XXXXXXXXXXXX'
const clientSecret = 'XXXXXXXXXXXXXXXXXX'
const encodedData =…
Lucas Coutinho
- 11
- 1
1
vote
1 answer
Invalidating Jwt Token without a blacklist
I want to invalidate refresh jwt token without maintaining a blacklist of used refresh tokens with rotations, for this I had the idea of including a ValidationCode in the payload of the RT that the server generates and store whenever 2 refresh…
dbzadnen khiari
- 35
- 1
- 4
1
vote
1 answer
Change the preferred_username in token for client credential grant flow
I am using the Keycloak for one of our product. And we are using the client credentials grant flow to get the access token for service to service communication. And the issue is, preferred_username is returned as service_account_. Our…
Aravind Raj
- 11
- 2
1
vote
1 answer
how to use Access-Tokens for CRUD REACT JS
Given is an application for managing users. Following help files are used for this purpose:
AuthenticationAction.js
ManagementAction.js
AuthenticationAction.js is used for authentication:
export function authenticateUser(userID, password) {
…
user17161243
1
vote
0 answers
No authenticationScheme was specified issue
I am trying to validate token in multi tenant application. In startup(single tenant) earlier used this code for getting configuration data from appsettings.json.
services.AddMicrosoftIdentityWebApiAuthentication(Configuration);
But now we need to…
AlexDemo
- 141
- 3
- 14
1
vote
1 answer
Coinbase API returning invalid access token (Oauth token)
I'm using PHP and I've successfully generated an access token for a user using Coinbase Oauth2 to sign in to my application. However, on using the same code to fetch the data of the user, I keep receiving the result…
Justice Igoma
- 11
- 1
1
vote
1 answer
Angular 12 : after login if reload page getting 401
In angular project, after successful login getting 401 - Unauthorized or 401 - "Invalid user" after some time or when reloading any page.
AuthInterceptor
import { Injectable } from '@angular/core';
import { HttpEvent, HttpInterceptor, HttpHandler,…
ganesh
- 416
- 1
- 11
- 32
1
vote
1 answer
Authorization when creating a file in Javascript in a GitHub repo using API
My goal is to create a static page with GitHub Pages with a simple button.
When I press this button, I want to create a file in the same repository, in the same branch used for GitHub pages.
I read something about Authorization Token to be used in…
Pich
- 61
- 9
1
vote
2 answers
How to secure access token beyond XSS and CSRF
I understand the XSS vulnerability of using web storage and the CSRF vulnerability of using cookies. So I store the access token in memory and for persistence I have a refresh token in a cookie which I use to silently refresh my access token when we…
Shumii
- 4,529
- 5
- 32
- 41