When I try to convert my access code to an access token I'm getting the error:  Status 400.  Authorization code is invalid or expired  Error:  invalid_grant   I formerly had this working, but moved code to my local dev machine.  The steps I tried taking:   1)  Delete existing auth token/refresh token file 2) Called  https://api.cc.email/v3/idfed?client_id=<redacted>&redirect_uri=https%3A%2F%2Flocalhost&response_type=code&scope=account_read+account_update+contact_data 3)  When this returned a page on my browser, I logged in.  I then took the auth code from the redirect url (?code=xxxxxxxxxxxxxx) 4)  I called the following code, setting the authCode to xxxxxxxxxxxxxx from the step above String tokenFromAuthCodeUrl = "https://idfed.constantcontact.com/as/token.oauth2?code=" + authCode + "&redirect_uri=https://localhost&grant_type=authorization_code"; HttpRequest httpRequest = null; java.net.http.HttpResponse< String > response = null; HttpClient httpClient = HttpClient.newBuilder().build(); httpRequest = HttpRequest.newBuilder() .uri( URI.create( tokenFromAuthCodeUrl ) ) .header( "Authorization" , refreshTokenHeadersMap.get( "Authorization" ) ) .POST( HttpRequest.BodyPublishers.ofString( "" ) ) .build(); response = httpClient.send( httpRequest , java.net.http.HttpResponse.BodyHandlers.ofString() ); 5)  The response returned is Status 400.  Authorization code is invalid or expired  Error:  invalid_grant   I'm not sure where to go from here.  Can anyone see a problem with what I'm doing?   ... View more

Just to clarify:  If I somehow lost my refresh token (when using Server Flow for OAuth), is the only way to recover to go back and generate a new Authorization Code (i.e. redoing steps 1-3 in the docs https://v3.developer.constantcontact.com/api_guide/server_flow.html ) ... View more

I am using server flow to authenticate a batch process.  I successfully exchange the authorization code for an Access Token and Refresh token (step 4) of the documented process.   Next, I have a loop (as I am still in an early debug stage) where I refresh my token 5 times - just to see if it works.  The first 4 responses include 'access_token', 'refresh_token', and 'token_type'.  The 5th call, however, only returns an 'access_token' and a 'token_type'.   Why am I getting this strange (to me, at least) response?  I'd expect it to look like the previous 4 - which included a 'refresh_token'. ... View more

I'm fighting with the API trying to get authenticated.  I'm trying to get authenticated so my script can add new members to my contacts/lists each week (or on demand) from another application.  That means there is nobody Accepting or Denying whether to allow access - it should always allowed by this app. Likewise, I have no legit redirect URL, so I just use localhost.  I'm using Python and calling a GET to:   https://api.cc.email/v3/idfed?client_id=xxxxxxxxxxxxxxxxxx&redirect_uri=https%3A%2F%2Flocalhost&response_type=token&scope=account_read+account_update+contact_data Once I've done this, I'm stuck.  I've read the documentation found in "Authentication Overview", but that doesn't clear up what to do in my case.  There is nobody available to click the Accept button as this is an automated process.   Once I have the response from the GET above, what steps are required to get an access_token?   TIA.   ... View more