help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

oath2 token refresh javascript

ANSWERED

‎01-15-2020 22:06

‎01-15-2020 22:06

I am trying to get oauth2 working properly so I can poll sleep logs.  The initial auth portion works fine, but when the access token expires, I need to be able to refresh it.  I read the oath example and tried to follow it.  I also found a bunch of people having seemingly similar problems, but none of their solutions fixed my issue.  What am i doing wrong here?  Thanks in advance.

 

const headers = {
    'Authorization': `Basic <Base64encoded_string>`,
    'Content-Type': 'application/x-www-form-urlencoded',
};
const body = JSON.stringify({
    'grant_type': 'refresh_token',
    'refresh_token': `${settings['oauth'].refresh_token}`,
});

fetch('https://api.fitbit.com/oauth2/token', {
    method: 'POST',
    headers,
    body,
}).then(function (response) {
    // do stuff with the response

};

 

I verified that `settings['oauth'].refresh_token` is valid.

Best Answer
Labels:
0 Votes
1 BEST ANSWER

Accepted Solutions

‎01-30-2020 21:53

In response to clockwork_robot

‎01-30-2020 21:53

The other part of the issue is that I was only storing and using the returned access and refresh tokens locally.  That meant that the settings in the companion part of the app would feed old tokens if I restarted the app.  That refresh token would then by invalid, causing me to have to re-login each time I started the app.  By pushing the updated tokens back to the settings system, now I can restart the app and have it pick back up correctly.

View best answer in original post

Best Answer
6 REPLIES 6

‎01-16-2020 06:29

‎01-16-2020 06:29

Sorry, I forgot to put the actual error I'm getting... here it is:

 

{
    "errors":[
        {
            "errorType":"invalid_request",
            "message":"Missing 'grant_type' parameter value. Visit https://dev.fitbit.com/docs/oauth2 for more information on the Fitbit Web API authorization process."
        }
    ],
    "success":false
}
 
Best Answer
0 Votes

‎01-16-2020 11:41

In response to clockwork_robot

‎01-16-2020 11:41

Hi @clockwork_robot,

 

Not sure why you are seeing this error since your code looks right to me. Maybe I'll find something in our logs that will determine the issue. Can you please PM me your Client ID and the refresh token you're seeing this error on?

 

Hope to hear from you soon!

Best Answer
0 Votes

‎01-19-2020 20:50

In response to JohnFitbit

‎01-19-2020 20:50

I sent a PM, did you get it?

Best Answer
0 Votes

‎01-25-2020 20:10

In response to clockwork_robot

‎01-25-2020 20:10

For anyone who has this problem in the future, I figured part of the issue out.  The body needs to be in query string format like this:

body=`grant_type=refresh_token&refresh_token=${settings['oauth'].refresh_token}`

 

Before I was doing it like this:

body =  JSON.stringify({
    grant_type: 'refresh_token',
    refresh_token: `${settings['oauth'].refresh_token}`,
});

 

I am still not sure how I can get the client ID and secret to build the base64 encoded authorization part of the header, currently I just have it hard coded... which seems like a bad idea.  If you know how to grab that from the app running on the watch, please let me know.  Thanks

Best Answer
0 Votes

‎01-30-2020 21:53

In response to clockwork_robot

‎01-30-2020 21:53

The other part of the issue is that I was only storing and using the returned access and refresh tokens locally.  That meant that the settings in the companion part of the app would feed old tokens if I restarted the app.  That refresh token would then by invalid, causing me to have to re-login each time I started the app.  By pushing the updated tokens back to the settings system, now I can restart the app and have it pick back up correctly.

Best Answer

‎02-03-2020 17:33

In response to clockwork_robot

‎02-03-2020 17:33

@clockwork_robot Thanks for sharing the details with me in PM and I'm glad you were able to figure it out!

 

In the meantime, please check out our Common Solutions guide in case you come across other Refresh Token issues in the future. We're always updating this page, so feel free to refer to it in case you have any questions.

 

I hope this helps.

Best Answer
0 Votes