Authorizing Rememberizer apps
Rememberizer's implementation supports the standard authorization code grant type.
The web application flow to authorize users for your app is as follows:
Users are redirected to Rememberizer to authorize their account.
The user chooses mementos to use with your application.
Your application accesses the API with the user's access token.
Step 1. Request a user's Rememberizer identity
Redirect the user to the Rememberizer authorization server to initiate the authentication and authorization process.
Parameters:
Step 2. User choose and config their mementos
Users will choose which mementos to use with your app.
Step 3. Users are redirected back to your site by Rememberizer
After users select their mementos, Rememberizer redirects back to your site with a temporary code
parameter as well as the state you provided in the previous step in a state
parameter. The temporary code will expire after a short time. If the states don't match, a third party created the request, and you should abort the process.
Step 4. Exchange authorization code for refresh and access tokens
This endpoint takes the following input parameters.
Step 5. Use the access token to access the API
The access token allows you to make requests to the API on a user's behalf.
For example, in curl you can set the Authorization header like this:
References
Github: https://github.com/skydeckai/rememberizer-integration-samples
Last updated