Need some help with Code Auth

(Higive Ghudhed) #1

Here’s my PHP code. I can only seem to get a NULL return and a 400 response. I can’t seem to get it to come in right. I feel like I’ve checked everything 100 times and it’s just not coming. I know the clientID and secret are right. I would appreciate any help. (PS. Iv’e tried to get into a slack that was recommended for fuzzyworks but not getting the invite after a few attempts.)

	$codeReturn = ($_GET["code"]);
	$url = ' HTTP/1.1';
	$sql = "SELECT * FROM `auth_AppConfig` LIMIT 1";
	$resultSql = $connection->query($sql);
	$clientData = $resultSql->fetch_assoc();
	$clientID = $clientData["auth_AppConfig_clientID"];
	$clientSecret = $clientData["auth_AppConfig_clientSecret"];
	$baseEncodeClient = 'Basic '.base64_encode($clientID.":".$clientSecret);
	$headers = "Authorization: ".$baseEncodeClient."\r\nContent-Type: application/x-www-form-urlencoded\r\nHost:";
	$fields = http_build_query(array('grant_type' => 'authorization_code', 'code' => $codeReturn));

	$ch = curl_init();

	curl_setopt($ch, CURLOPT_URL, $url);
	curl_setopt($ch, CURLOPT_HEADER, $headers);
	curl_setopt($ch, CURLOPT_POST, 1);
	curl_setopt($ch, CURLOPT_POSTFIELDS, $fields);
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
	$result = curl_exec($ch);


(Blacksmoke16) #2

See example below:

(Higive Ghudhed) #3

I’ll give this a shot. Was concerned because of this on the doc page:

Alternatively, while not in accordance with the OAuth 2.0 standard, the body of the request may use JSON encoding.

(Blacksmoke16) #5

See example below:

(Higive Ghudhed) #6

Returned back an empty page.

when i put in the following, it was NULL


(Blacksmoke16) #7

Oops, my bad, the URL for those should be i was setup using the JWT beta endpoints.

Full Example, tested and working as of PHP 7.0.30


$curl = curl_init();
$clientId = "";
$clientSecret = "";
$code = "";

curl_setopt_array($curl, array(
  CURLOPT_URL => "",
  CURLOPT_POSTFIELDS => "grant_type=authorization_code&code=".$code,
    "authorization: Basic " . base64_encode($clientId . ":" . $clientSecret),
    "content-type: application/x-www-form-urlencoded"

$response = curl_exec($curl);
$err = curl_error($curl);


(Higive Ghudhed) #8

OK, now I"m seeing bool(true) response now.

I think I can move on from here.

Thanks for now!

(Higive Ghudhed) #9

OK, so now no matter what I do I’m only seeing


If I try to get json_decode it, it goes to “1”. What am I missing…

(Blacksmoke16) #10

Sounds like you’re not actually getting the body of the response, but just if it was successful or not.

The code i posted above was working and was seeing the output. Compare what you got with that. Also what PHP version you on?

Try adding curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); to your curl setup.

(Higive Ghudhed) #11

So I’ve narrowed it down to the fact that if I hard code the client ID and secret, the POST passes. If I pull it from a database, it fails…

I appreciate all the help.

(Blacksmoke16) #12

Gotcha, sounds like an easy fix. Just make sure what is coming back from db is what you are expecting?

(system) #13

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.