help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Oauth2 issue with Home Assistant integration

ANSWERED

‎01-21-2025 13:11

‎01-21-2025 13:11

I try to figure out how to get the fitbit integration in home assistant to work. The issue I have is that an link to my fitbit app is created and opened but the redirect_uri parameter is not accepted

Developer information: invalid_request - Invalid redirect_uri parameter value

The link is like this: https://www.fitbit.com/oauth2/authorize?response_type=code&client_id=********&redirect_uri=https://m...

Setting the redirect_uri to "https://my.home-assistant.io" is a home assistant feature to get https for a server that is hosted on the local network where TLS is not always setup. Why is that not accepted by the fitbit server?

Best Answer
Labels:
0 Votes
1 BEST ANSWER

Accepted Solutions

‎01-21-2025 18:04

‎01-21-2025 18:04

Hi @guzzzt 

The redirect URL should be an open endpoint where the authorization code can be accepted and processed.   Is that the case with https://my.home-assistant.io or is there another endpoint?   Also, https://my.home-assistant.io needs to be listed in your application settings at https://dev.fitbit.com/apps.

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google

View best answer in original post

Best Answer
0 Votes
6 REPLIES 6

‎01-21-2025 18:04

‎01-21-2025 18:04

Hi @guzzzt 

The redirect URL should be an open endpoint where the authorization code can be accepted and processed.   Is that the case with https://my.home-assistant.io or is there another endpoint?   Also, https://my.home-assistant.io needs to be listed in your application settings at https://dev.fitbit.com/apps.

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google
Best Answer
0 Votes

‎01-21-2025 23:52

In response to Gordon-C

‎01-21-2025 23:52

Thank you, changing the redirect URL to https://my.home-assistant.io/redirect/oauth on https://dev.fitbit.com/apps fixed it for me.

Best Answer
0 Votes

‎01-25-2025 01:37

‎01-25-2025 01:37

An OAuth2 issue with Home Assistant integration could stem from incorrect client credentials, mismatched redirect URIs, or insufficient permissions granted during the authentication process.

Best Answer
0 Votes

‎04-05-2025 13:36

In response to Gordon-C

‎04-05-2025 13:36

Hey Gordon C. - your answer is mostly great... but if you can, please clarify exactly *where* the https://my.home-assistant.io/ URL needs to be listed on the https://dev.fitbit.com/apps page? Which field, of the five possible? For those of us simply taking advantage of the value added to our Fitbits by incorporating them (trying to!) into our smart home systems, I for one don't automatically know how to fill out the App Registration form. It's simple enough, but most of us are "enthusiasts", not "actual" developers... 🙂

BTW, the OAuth Tutorial page linked from the Registration page is excellent - very helpful. But still aimed at pros, not us wannabees. A little extra detail on the 5W's would be extremely helpful. Thanks! Brad

Best Answer
0 Votes

‎04-06-2025 12:07

In response to Sergeant82d

‎04-06-2025 12:07

This is how I have it configured, so it is Redirect URL that should have value "https://my.home-assistant.io/redirect/oauth".

Application Name *: HA
Description *: Home assistant
Application Website URL *: https://home-assistant.io
Organization *: HA
Organization Website URL *: https://home-assistant.io
Terms of Service URL *: https://home-assistant.io
Privacy Policy URL *: https://home-assistant.io
OAuth 2.0 Application Type *: Server
Redirect URL *: https://my.home-assistant.io/redirect/oauth
Default Access Type *: Read Only

 

Best Answer
0 Votes

‎04-08-2025 13:45

In response to guzzzt

‎04-08-2025 13:45

Thank you @guzzzt for providing your settings.

@Sergeant82d  - https://my.home-assistant.io/redirect/oauth, from the example provided, is the open endpoint where the authorization code can be accepted and processed.  You provide the URL in the redirect URL field.  We provided this information in the Getting Started guide.  We tried to write the content for all types of developers.  But, we will take another look at the content to see if we can clarify the information more.

Thanks for your feedback.

Best Answer