-
Type:
Task
-
Resolution: Fixed
-
Priority:
Normal
-
Affects Version/s: None
-
Component/s: Back-end
-
None
- Create an application for interacting with new OAuth provider.
- Any OAuth token received by MB that begins with meba_ should be checked against the new MeB OAuth provider.
- To check a token against the MeB OAuth provider, call the https://test.metabrainz.org/new-oauth2/introspect endpoint with client_id, client_secret (from first step) and received OAuth2 token as form data in body.
- The received response is 403 for an invalid/expired token.
- If the received response is 200, then check the scope field in the JSON response and see if the resource the token is trying to access has the requested scope.
- has related issue
-
-
- Closed
-