LikeCoin
WebsiteDiscord GitHubSupport Us
Search…
English
Decentralize Publishing
LikeCoin Progress Update
LikeCoin Airdrop
LikeCoin FAQ
🔬
Developer Guide
Developer Introduction
LikeCoin chain API
LikeCoin API
Calling API
Authetication
Reference
LikeCoin button
LIKE pay
ISCN
likecoin-js
Ecosystem Statistics Badge
Raise Proposal
👥
Validator Guide
Technical Introduction
LikeCoin chain node
Become a validator
LaiChiKok Upgrade
FoTan Upgrade
Legacy endpoints
📙
General Guides
Community
Decentralized Publishing
Faucet
Wallet
Trade
Liquidity
Stake
Governance
LikeCoin Overview
💻
DApp
WordPress
Liker Land
depub.space
Civic Liker
LikeCoin button
Liker ID
Content Creator Tools
Glossary
Archive
Archive
Powered By GitBook
Authetication
How to obtain access token for authenticated API using OAuth 2.0

Introduction

LikeCoin API uses OAuth2.0 flow for API authorization, through the following steps.
  1. 1.
    Users authorize your app through web UIhttps://like.co/in/oauth. For details and params, please refer to like.co OAuth page section below
  2. 2.
    Users are redirected back to a redirect_uri you own with a code, this code is used to exchange for a user access_token and refresh_token.
  3. 3.
    Call APIs using access_token with proper scope. e.g. APIs in Like->info sections requires read:like.info or write:like.info grants.

AVAILABLE SCOPES:

Scope
Description
profile
Basic user public information
email
Access to user's email address
The following scope should be prepended with read: or write:
Scope
Description
(read|write):like
Access to all like related read/write scope
read:like.button
Access to read user like history and suggestions
write:like.button
Permission to like content for user
read:like.info
Access to read user liked authors, content suggestions, etc

TOKEN LIFE TIME

Access tokens expire in 1 hour. Refresh tokens do not expire, unless:
  1. 1.
    Another new refresh token was issued for the same oauth client & user combination
  2. 2.
    User revoked access
  3. 3.
    OAuth client revoked the token via API

1. Format like.co OAuth parameters

https://like.co/in/oauth/?client_id={{CLIENT_ID}}&scope={{scope}}&redirect_uri={{redirectURI}}&state={{state}}
User will navigate to this page to authorize oauth, redirects back to redirect_uri with query paramauth_code and state if success
Param
Description
client_id
OAuth client id
scope
list of scope seperated by space, must be whitelisted, e.g. profile email
redirect_uri
redirect uri in URI compoenent encoded form, must be whitelisted
state
optional state provided by the service, that get passed back after authetication is success. Highly recommended for security reason.

2. Redirect users to the formatted like.co OAuth page

The page will prompt user to either login or register a Liker ID if they are not logged in. Users logged in will then be shown the OAuth client's info and permissions asked. authorization_code and other response will be sent in query string to redirect_uri should users accept the permission, or error denied will be returned instead.

3. Exchange authorization_code for access_token

post
https://api.like.co
/oauth/access_token

4. Call API with access_token

Call authenticated API with header Authorization valueBearer {{access_token}}
Previous
Calling API
Next
Reference
Last modified 2yr ago
Export as PDF
Copy link
Contents
Introduction
1. Format like.co OAuth parameters
2. Redirect users to the formatted like.co OAuth page
3. Exchange authorization_code for access_token
post
4. Call API with access_token