oh my.. today is Oath questions day... All due to ...
# generalk
KevinC.
03/26/2020, 7:39 PMoh my.. today is Oath questions day... All due to the new alert being sent out one of my developers wants to start using OAuth 2.0 for his new ReSTlet. So I found out we need to create a new Integration Record since you cannot just add OAuth 2.0 to the existing application integration record. The question I have is the field "Redirect URI" I have no idea what this refers to. Can anyone point me in the right direction ? PLS..
b
battk
03/26/2020, 7:40 PMare you sure about the edit thing
battk
03/26/2020, 7:41 PMintegration record allows editing of this data
k
KevinC.
03/26/2020, 7:42 PMno s0 much.. the issue is I was unable to add AUth 2.0.. but maybe because the integration was added by a previous Admin ?
b
battk
03/26/2020, 7:42 PMotherwise start looking at the OAuth 2.0 Authorization Code Grant Flow.
battk
03/26/2020, 7:44 PMthe Redirect URI is the url NetSuite redirects to after a user grant's authorization
battk
03/26/2020, 7:44 PMpart of Step 1 of the docs
k
KevinC.
03/26/2020, 7:45 PMok.. thanks for the assistance.. I will dive in and see what I come up with..
b
battk
03/26/2020, 7:48 PMtell me how it works long term, docs suggest that the refresh token is only valid for 7 days
battk
03/26/2020, 7:48 PMwhich sounds ridiculous
k
KevinC.
03/26/2020, 7:49 PMwill do , after we successfully navigate this..
s
steven.smith
03/27/2020, 3:56 PM@KevinC. have you been able to make any progress on this? I am looking into it as well and from what I can tell it requires user interaction ever 7 days to get a new token which if that is the case then this is no where near as good as oauth 1.0 where the entire authentication flow can be automated and requires zero user interaction
k
KevinC.
03/27/2020, 4:06 PM@steven.smith unfortunately, I got pulled off on another issue and wasnt able to finish my testing.. am going to see if I can get a test config with my celigo account and see if I can get it working in an hour or so.. Unfortunately found out that celigo doesnt have an option for oath2.. will need to find a test app to test with before enlisting the developer.
s
steven.smith
03/27/2020, 5:35 PM@KevinC., I spent some time on this and was not able to get past step 2 in the auth process. For me, the token endpoint that needs to be called fails with a No Response error. I did find out that the browser redirect for entering your NS credentials is required though, and therefore this authentication flow is not going to work for me because my integration is completely automated and will not have a user sitting in front to enter the credentials.
k
KevinC.
03/27/2020, 5:37 PMyea i was trying to read on how to do that URI thing if they were mobile devices.. but just gave up for the time being. I am trying to rescue my old failthful 2009 quad core mbp.
b
battk
03/27/2020, 5:46 PMthe flow involves browsers
battk
03/27/2020, 5:50 PMthe idea is that your server redirects to authorize.nl, authorize.nl redirects back to your redirect_uri, and then the server behind the redirect_uri gets the token
s
steven.smith
03/27/2020, 6:44 PMyeah, its too bad they dont implement one of the other flows that works on the server side without any user interaction. looks like Client Credentials Flow allows for that type of interaction
b
battk
03/27/2020, 6:49 PMthe flow is sane if they had the refresh token lasting forever and had an expiring access token
battk
03/27/2020, 6:50 PMhuge difference between a user granting authorization once vs once every 7 days
s
steven.smith
03/27/2020, 7:35 PMtrue
3 Views