Access Tokens Expiration

API
1

When i receive my access_token from authentication API point :

POST https://api.twitch.tv/kraken/oauth2/token
    ?client_id=uo6dggojyb8d6soh92zknwmi5ej1q2
    &client_secret=nyo51xcdrerl8z9m56w9w6wg
    &code=394a8bc98028f39660e53025de824134fb46313
    &grant_type=authorization_code
    &redirect_uri=http://localhost

Field expires_in returns a value ~ 15000.

I thought (reading old post) that access tokens never expire :

And i don’t clearly read in v5 documentation the behavior about access tokens expiration.

So i have to implement a refresh-token solution in order to make an access token valid beyond the expires_in field or there is others solutions ?

And how this expires_in value is computed ?

2

Yes.

Recently they changed the API.

If you have a ClientID created after a certain point, access tokens generated via that client now expire and you need to refresh.

At some point this change will be back ported to everyones ClientID

3

If this is your Secret, you should revoke it immeditely

4

Thanks, i took this secret from the example in the documentation :slight_smile:

So let’s go for a refresh-token solution.

5

Roger that, but best to keep to the “not posting secrets” just in case you forget next time :smiley:

6

Did you ever come to a solution? I attempted

https://api.twitch.tv/kraken/oauth2/token
?client_id=(INSERTID)
&client_secret=(INSERTSECRET)
&grant_type=refresh_token
&refresh_token=(INSERTTOKEN)

But Twitch returns:
“The parameter “grant_type” was malformed: value must be one of “authorization_code”, “password””

7

You necro-ed this thread and 400 - Parameters are messed up again? Refreshing Token I will answer over on the other thread. Please start a new thread rather than necroing

8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.