(The expiration time is denoted in the value, which is in seconds.) If you are using the scope parameter (retired) while requesting a new accessToken and you want to contextualize the accessToken to the logged in user, the internalOauthToken you're using MUST NOT be expired. This request ensures that your app is calling the correct customer endpoints. Only use the refreshToken parameter in the request body if you need a new contextualized token.Įach time you get a new accessToken, include a request to GET /platform/v1/endpoints. If logging in via Marketing Cloud and selecting the app from the AppExchange listings, the app is installed in the correct account. The App must be installed in the account that is being used to log in. Refresh Token Implementation Restrictionsīe aware of these restrictions in your implementation code when using the refreshToken to refresh the OauthToken (accessToken) that is about to expire and keep it contextualized to the logged-in user: This URL is where you forward the user upon successful completion of SSO through your login page. The URL you set for the home page of your application in the installed package. Value used to distinguish production versus development environments, for example. This value is in the installed package details. The currently supported data center regions are NA1 and EU1. Utilized when making Email SOAP API calls to set the appropriate web service end point. Usual production values are S1, S4, S6, S7, S10, or S50. The Marketing Cloud server instance that the account is on. enterprise - Marketing Cloud Enterprise 2.0 Edition.tiered - Marketing Cloud Enterprise Edition (Lock & Publish or On Your Behalf).reseller - Marketing Cloud Agency or Agency Client (Reseller Edition or Agency).core - Marketing Cloud Core or Advanced Edition. The data context value represents the Marketing Cloud edition of the account. For agency sub-accounts, use the agency client ID for the enterprise ID. The Marketing Cloud top-level enterprise account ID. For enterprise sub-accounts, ID this is the sub-account ID and can be different from the enterprise ID.For agency sub-accounts, this ID is the agency client ID and must match the value for the enterprise ID.Is Daylight Savings Time (DST) applied to this timezone setting? The friendly name of the user's timezone. Value of 1200 is equal to 20 minutes, for example. (field no longer used in claims version 2) Length in seconds before tokens expire. This process generates a new refresh token for your app. When the token expires, inform the user to log out and log back in. Refresh tokens expire after 700 days or once they have been used. (field no longer used in claims version 2) An OAuth refresh token for getting an updated oauthToken. It is also referred to as the legacyToken. (field no longer used in claims version 2) An OAuth token that can access the SOAP API. For more information, see Get an Access Token services page. (field no longer used in claims version 2) An OAuth token valid for 1 hour that can access REST Services for the user. If your package doesn't have an API Integration component, you don't receive a refreshToken. The refreshToken has a 5-minute revocation period after use, allowing for more attempts in case the auth service doesn't respond immediately. If the refreshToken was used previously, you receive a 401 Unauthorized. If the token expires, inform the user to log out and log back in. The refreshToken is valid for up to 700 days or until it has been used. For example, Īn OAuth refresh token for getting an updated accessToken. For multi-tenant applications, it can contain a tenant-specific endpoint. For example, Ĭontains the correct URL for the base of the REST API. 2 - default version for all new apps that provides greater security.Ĭontains the correct request token URL for the environment or region.The exp (expiration time) claim identifies the expiration time on or after which the token MUST NOT be accepted for processing.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |