04-02-2020 04:47
04-02-2020 04:47
I have successfully implemented Fitbit login with the implicit grant flow and would also want to allow the user to logout from Fitbit.
I see in the documentation that you can revoke tokens, but I guess that this is not the way to go due to this:
"Revoking the access token or refresh token will provide the same result. When the token is revoked, all tokens are revoked for that user. If an application has multiple sessions (web, mobile, etc.) for the same user, the revocation will remove all sessions (web, mobile, etc.) associated with that user.
"
This would mean that the user would be logged out from all devices right. What is your recommendation to logout an user from Fitbit using the Web API?
Answered! Go to the Best Answer.
04-04-2020 09:42
04-04-2020 09:42
Ok, all good:
04-02-2020 11:10
04-02-2020 11:10
Hi @pepejeria,
Can you clarify your use case? Are you trying to force a user to logout of the Fitbit app or the application you are developing?
The Web API doesn't support any endpoints that forces a user to logout of their own Fitbit account. Users have full control over their Fitbit account from logging in & logging out to deciding which 3rd party applications to share data to and when to revoke access to 3rd party applications.
Revoking a token does not force a user to log out of their Fitbit account. What revoking a token does is prevent your application from further pulling data from the user's Fitbit account.
I hope this helps clarify. Please let me know if you have any additional questions.
04-02-2020 11:46
04-02-2020 11:46
I have step counter app for the iPhone and I am adding Fitbit integration to it.
The user can connect to Fitbit by logging in and I would also allow the user to disconnect Fitbit from my app. Kind of like what the Strava app does.
"Revoking a token does not force a user to log out of their Fitbit account. What revoking a token does is prevent your application from further pulling data from the user's Fitbit account."
Ok, so I should then revoke the token to disconnect the Fitbit connection to my app right? I got another impression from what the documentation says (quoted text in my original post).
04-03-2020 02:05 - edited 04-04-2020 09:08
04-03-2020 02:05 - edited 04-04-2020 09:08
To clarify what I what:
My iOS step counter app has added Fitbit integration and I would like to give the user the possibility to log out (prevent app from pulling data) as well. Kind of what the Strava app is doing currently for iOS, they allow the user to disconnect Strava from Fitbit.
Documentation:
The documentation states:
"Revoking the access token or refresh token will provide the same result. When the token is revoked, all tokens are revoked for that user. If an application has multiple sessions (web, mobile, etc.) for the same user, the revocation will remove all sessions (web, mobile, etc.) associated with that user."
Questions:
Thanks.
04-04-2020 09:42
04-04-2020 09:42
Ok, all good:
04-06-2020 15:33
04-06-2020 15:33
@pepejeria Apologies for the delayed response. Your above statements are correct.