How to open access to /oauth/token for an unauthorized user in Bitrix24 (box)?

I

imsha2019-12-20 12:25:36

1C-Bitrix

imsha, 2019-12-20 12:25:36

The task is to get a new token for the rest api.
With a get, post request for /oauth/token?... the site returns a page with a login form.
There is a file .access.php in the root of the site, it contains the line
$PERM["oauth"]["*"]="R";
There are no .access.php files in the /oauth directory and subdirectories.
Can you tell me what needs to be configured?

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

N

nioma, 2020-02-05
@nioma

If your application renews authorization tokens using refresh_token, then there are two options: get a new pair of tokens by making a request to
xxx.bitrix24.xxx/oauth/token/?grant_type=authorization_code...
or to the authorization server
oauth.bitrix.info/ oauth/token/?grant_type=authorization_code...
In the case of cloudy Bitrix24, both options will work equally well, since cloudy Bitrix24 will simply "forward" your request to the real authorization server, but boxed Bitrix24 may not do this.
Therefore, recommendation number 2 - to update tokens, always contact the authorization server directly . This will work for both the cloud and the box.
From here