C# API Login with Twitch (getting back the token)

BarryCarlyon · June 11, 2020, 11:14am

You are using implicit auth, you’ll get better mileage with the “authorization code flow”

As otherwise you need some javascript code to capture the URL fragment and submit that to the server.

With your current solution to extract the token you need to do something like this

BarryCarlyon/twitch_misc/blob/main/authentication/implicit_auth/index.html#L22


      
              </li>
              <li>
                  <a href="" id="authorize_email">Authorize and get Public data + email</a>
              </li>
          </ul>
          <p>After testing you can Disconnect the "Barry's GitHub Examples" Application on the <a href="https://www.twitch.tv/settings/connections">Connections page</a></p>
          <div id="access_token"></div>
          <div id="user_data"></div>
          
          <script type="text/javascript">
              // These are set for the GitHub Pages Example
              // Substitute as needed
              var client_id = 'hozgh446gdilj5knsrsxxz8tahr3koz';
              var redirect = 'https://barrycarlyon.github.io/twitch_misc/authentication/implicit_auth/';
          
              document.getElementById('authorize_public').setAttribute('href', `https://id.twitch.tv/oauth2/authorize?client_id=${client_id}&redirect_uri=${encodeURIComponent(redirect)}&response_type=token`);
              document.getElementById('authorize_email').setAttribute('href', `https://id.twitch.tv/oauth2/authorize?client_id=${client_id}&redirect_uri=${encodeURIComponent(redirect)}&response_type=token&scope=user:read:email`);
              document.getElementById('access_token').textContent = '';
          
              if (document.location.hash && document.location.hash != '') {
                  var parsedHash = new URLSearchParams(window.location.hash.slice(1));

But that only presents it to the Webpage, which then has to submit if off. And this token cannot be refreshed as you don’t have the refresh token