We have a token that we use to access and identify the user in our platform. Its pretty standard. We save it in the Authorization header property on the request.
Currently I am adding it to the query parameters in the grantUrl but the problem is that I am not getting it back when I get the access tokens. I tried to add it to the headers before the redirect - but I am still not getting it back with the access token.
How can I keep our platform login token through out the OAuth process?
Thanks!
We have a token that we use to access and identify the user in our platform. Its pretty standard. We save it in the Authorization header property on the request.
That's not very standard. :-/
Standard is using a cookie to track what user is logged in (the cookie stores some sort of session identifier or session auth token).
You should set a cookie to identify and allow access to the user. The browser will automatically send the cookie to your server when the user hits your site during the OAuth connection process.