Implicit Grant

Implicit Grant

To initiate the OAuth authorization delegation flow you must first direct your users to the Socialcast Authorization dialog where they can give your application permissions to access their Socialcast data and act on their behalf. Do this by opening the authorization dialog URL in a user-agent:

https://ENDPOINT_DOMAIN/oauth2/authorization?response_type=token&redirect_uri=CALLBACK_URL&client_id=CLIENT_ID

Embedded user agents seeking a more streamlined experience may skip the first step of the authorization flow by opening the following URL instead:

https://ENDPOINT_DOMAIN/oauth2/authorization/new?response_type=token&redirect_uri=CALLBACK_URL&client_id=CLIENT_ID

The following variables should be substituted:

The Socialcast server will handle authenticating the user and present them with the opportunity to approve or deny your access request. Once the user has made their choice, they will be redirected back to your application via the "redirect_uri" you supplied when sending the user to the Authorization dialog.

Authorization Granted Response

If the user chooses to grant your request, the Socialcast server will append the following URL-encoded parameters to the fragment identifier:

For example:

REDIRECT_URI#access_token=12345&expires_in=3600&token_type=bearer

Access Denied or Error Responses

If some kind of error occurs before authorization has been granted, or the user choses not to authorize your application the server will append the following URL-encoded parameters to the fragment identifier:

For example:

REDIRECT_URI#error=access_denied&error_description=the%20user%20has%20declined%20your%20request.