Authorization
Matt Bierner edited this page May 20, 2015
·
46 revisions
Applications can read Blot're using the REST or web socket APIs. But what about apps that update status or create new child streams for users? This page covers making authorized API calls on behalf of a user.
Authorization allows your application to politely request a user's permission to edit their streams. If the user grants your request, your application can obtain credentials that allow it to act on the user's behalf.
This covers:
- Registering a new client application.
- OAuth2 authorization code flow.
- Disposable / Single use clients.
- Refresh Tokens.
- Making authorized requests.
- Revoking tokens.
- Token Info.
Authorization is required for all mutating operations in both the REST and Websocket APIs.