Skip to main content
@Friendica Support How does the OAuth workflow work? With /api/v1/apps I get a client_id and a client_secret? How do I get the OAuth token?
@Friendica Support
Marco R.
Marco R.  
With the following code I get an empty string:
 xhr.setApi("/oauth/authorize");
 xhr.clearParams();
 xhr.setParam("response_type","code");
 xhr.setParam("redirect_uri","urn:ietf:wg:oauth:2.0:oob");
 xhr.setParam("client_id",app.client_id);
 xhr.setParam("force_login",true)
 xhr.get();

Am I supposed to give username and password with this API? I can't show the website in the app, that would require a dependency to Qt Webengine...
Michael Vogel
Michael Vogel  
I guess that there is no way around showing the site in a browser component, because that's how OAuth is normally used.
Nordnick :verified:
Nordnick :verified:  
@heluecht
The process requires multiple steps.
E.g. registering an application.
E.g. authorizing an user.

And no, you don't use an user name or password with the #API.
Tokens are used.

Getting started with the API
https://docs.joinmastodon.org/client/intro/

Getting started with the API

A primer on REST APIs, HTTP requests and responses, and parameters.
docs.joinmastodon.org
#API @Michael Vogel