diff --git a/site/callback b/site/callback new file mode 100644 index 0000000..3ee3a41 --- /dev/null +++ b/site/callback @@ -0,0 +1,207 @@ + +
+ +Authorization process done!
+ ← go back to main page +The code is generated by the Authentication server and send back + to the client via the resource's owner user-agent
+For us, it is a JWT:
+ +Which once decoded is:
+ +Now the client server need to retrieve an Access Token + and a Refresh Token by using that code.
+To achieve that the client will make a call to /token
+ using a basic auth creds
You have about 10 mins to retrieve them. + Unlike in this demo, that MUST be done server side.
+ +/token
token endpoint URL: Nothing yet.
Nothing yet.+
Nothing yet.+
Nothing yet.+
Nothing yet.+
API URL: Nothing yet.
Nothing yet.+
The access tokens are the only tokens which are able to talk to the + Visibility API.
+Access tokens live a short time (about 10 min to 1 hour)
+This is why the client must require a new access token using its
+ refresh token.
+ That is just making another call to /token
+ But with different parameters.
Nothing yet.+
Nothing yet.+