help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

OAUTH2 Invalid Authorization Token Type

‎09-07-2020 17:45

‎09-07-2020 17:45

Hi All I wrote a Fitbit App before and I am trying my luck with an application. 

 

I can get the request token, and I can use it to get the access token. I cannot use the access token to get the actual data. Below is just some rough work and I will be properly storing the tokens later, just trying to get the foundation working.

 

router.get('/fitbit-api-token',function(req,res) {
   const requestToken = req.query.code
   const headers = {
    'Authorization': `Basic REDACTED`,
    'Content-Type': 'application/x-www-form-urlencoded',
};
  const body = "cliend_id=REDACTED&grant_type=authorization_code&redirect_uri=http://localhost:3000/fitbit-api-token&code="+requestToken;
request({
    url: 'https://api.fitbit.com/oauth2/token',
    method: 'POST',
    headers,
    body,
},function (error, response, body){
    const fitbitResponse = JSON.parse(body)

    access_token = fitbitResponse.access_token;
    refresh_token = fitbitResponse.refresh_token;
    user_id = fitbitResponse.user_id;

    var json_headers = {
    'Authorization': 'Bearer ' + access_token,
   };
   console.log(json_headers);
   request({
       url: "https://api.fitbit.com/1/user/"+ user_id + "/activities/heart/date/today/1d.json",
       method: 'GET',
       json_headers,
     },function (error, response, body){
       console.log(body);
     });
});

I get an authorization error: Invalid Authorization token type when I am doing the GET method

Best Answer
Labels:
0 Votes
4 REPLIES 4

‎09-08-2020 15:59

‎09-08-2020 15:59

Hi @vanmepper 

 

I'm not familiar with the programming language you're using.   I'm not sure if this has anything to do with your error, but I do see the word client_id misspelled in your code for the variable "body".  The misspelling could cause the  /oauth2/token call to fail would which not provide you with an access token.   Are you sure you're getting the access token, refresh token and user id from the endpoint?

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer
0 Votes

‎09-08-2020 16:09

In response to Gordon-C

‎09-08-2020 16:09

@Gordon-C I am using Javascript.

 

I was still getting tokens which is weird. It doesn't return any errors and it appears to be correct. I did fix client_id and that doesnt change anything.

Below is the response I get with some details edited out.

 

vanmepper_1-1599606458813.png

 

 

Best Answer
0 Votes

‎09-09-2020 13:07

In response to vanmepper

‎09-09-2020 13:07

@GordonFitbit I just tried using Postman and I get the expected response so it seems to be on my request side and not a token error. I will have to look into it more. 

Best Answer
0 Votes

‎09-09-2020 17:27

In response to vanmepper

‎09-09-2020 17:27

I used a different function called fetch and used the mode set to 'cors' and that seemed to fix it. 

Best Answer
0 Votes