Never ever post your Bearer token publically. Please revoke this key immeditely
You requested client_credentials, which as per the docs
Is an authorisation for your Application/Server/ClientID/Not a Person
As mentioned earlier, app access tokens are only for server-to-server API requests. The grant request below requires the client secret to acquire an app access token; this also should be done only as a server-to-server request, never in client code.
To follow up:
Authenticate your app and allow it to access resources that it owns. Since app access tokens are not associated with a user, they cannot be used with endpoints that require user authentication.
You requested an oAuth for your “application” and your “application” doesn’t have a bits program.
Thanks.I don’t know users means,is the person who I want to collect information from？ I just want to collect information about score and broadcasters from New Twitch API. It requires “Authentication Required scope: bits:read”.So I do not know why redirect users to URL.And the docs’s example used curl.
In order to get information about the streamer cohhcarnage, cohhcarnage needs to have authenticated. If you authenticate as yourself, you cannot get cohhcarnage’s bits leaderboard.
You need to perform an oAuth dance with the person you wish to obtain the bits leaderboard for. So you give that person/streamer your webpage, and then they go off and authenticate and then you have a access token to use