it would help other developers if an answer to the OP's question was posted in this same thread. ... View more

In my case, I had 2 desktop pc's.   On each PC, my same User had to go through the Authorization process.  In my case, I used the Server flow.  So, this same CC User has now granted Authority on 2 PC's.  The initial Access/Refresh token values on the PCs were not the same.  And in using the token values on either PC, I never encountered any error.     That is how I made my determination.   Though this has not been confirmed by anyone at CC.    If this is not currently the case, then perhaps CC has modified its end of things. ... View more

answer my own question:)     with some testing, I found that there can be multiple valid "AccessToken/RefreshToken" pairings.   So, what i thought would be an issue, is not an issue at all. ... View more

the refresh token is long lived.   use it, it is going to work in getting you the next pair of auth code/ refresh token ... View more

  ...Authorization' => 'Bearer {$access_oken}'... ... View more

if you are looking for something analogous to the .NET CTCTWrapper that was available for CC V2, there is no such thing.  You will have to roll your own.     ... View more

i am uncertain as to if/when/how a Refresh Token expires, if ever.   but, you do receive a new Refresh Token each time you use a Refresh Token to obtain a new Access Token .    As stated in the CC docs:  "...Access tokens automatically expire two hours (7,200 seconds) after their last use. Access tokens have a maximum lifetime of 24 hours (86,400 seconds)...."   here is a helpful link to info on Tokens and even a good Refresh strategy:    https://v3.developer.constantcontact.com/api_guide/faqs_manage_applications.html edit:   look under the "Make access tokens last longer?" topic on that link ... View more

if i understand your question correctly, the answer is this:   the first time you go through this process, the User must login manually in order to allow access.   Once they grant access, you receive both an Access Token and a Refresh Token.   That Refresh Token can be used as needed to to get another Access Token.  When the Refresh Token is used to get Access Token, no manual User action is necessary because your code can perform this function. Hope that helps. ... View more

excuse me for stating the obvious.  but do you have the required authorizations to create new campaign? https://v3.developer.constantcontact.com/api_reference/index.html#!/Email_Campaigns/createEmailCampaignUsingPOST ... View more

Hey Steve; very nice....thank you!   i'm aware that i can also use Postman to get Authorization Code and then the Access and Refresh tokens.   And i would be fine doing it that way.   But the integration to CC is part of our software.  So, any number of our Users will have to go through the process to grant our app access to their CC accounts.  Thus the need for the more 'traditional' UI.  Or maybe i am missing something?   Thanks again. Basically what puzzles me is this:   if i use the Client Flow, clicking "Allow" redirects to our page and the URL has the Access Token embedded in it.    But, using the Server Flow, the redirect doesn't occur.  So we cannot get the Auth Code.    And they tell me it is a browser issue.  But in one instance it works.  In the other it does not. ... View more

Hi; I need to use the OAuth2.0 Server Flow.  This is a .NET windows application that uses a WebBrowser control during the OAuth processes.   The problem i am having is that our WebBrowser control does not receive the URL containing our Redirect and the Authorization Code that we could use to obtain an Access and Refresh token.  Ordinarily, we would parse the Authorization Code value from the URL in the WebBrowser's DocumentCompleted or even Navigated event.  But all we receive when the "Allow" button is clicked is "_javascript:void(0)". If you are using the Server Flow and are able to obtain the Authorization Code, maybe you can message me your email and we can discuss via email?    Thanks. ... View more

Hey SteveP.   Did you ever get any response/feedback from CC on this?  Maybe it is just me....but they appear to totally clam up when queried about anything .NET related.  Especially when it involves a desktop/windows application. Anyways....i wonder if you( or anybody ) have had success establishing the OAuth2.0 Server Flow?   I can get as far as the CC "Allow/Don't Allow" page...but nothing comes back to my app when clicking "Allow".  It doesn't navigate to my redirect, just stay on "Allow/Don't Allow"..  This is in a .Net windows app using the webBrowser control.    ... View more

that is  correct.   the explanation of the Server Flow on the link above does a good job clarifying the entire process and requirements.        ... View more

I will start a new thread if you'd like.  Just let me know.   But my issue is the very same as in the original post.  This is also a Windows application, using a webBrowser control.   Doing the 'server' flow.  When "Allow" is clicked, it appears that nothing is getting triggered. Browser remains on the Allow/Deny page.   From log---> WebBrowser1_Navigated https://idfed.constantcontact.com/as/jkr4A9muH2/resume/as/authorization.ping?resume=/as/jkr4A9muH2/resume/as/authorization.ping&spentity=null&scope=contact_data WebBrowser1_DocumentCompleted https://idfed.constantcontact.com/as/jkr4A9muH2/resume/as/authorization.ping?resume=/as/jkr4A9muH2/resume/as/authorization.ping&spentity=null&scope=contact_data WebBrowser1_Navigating https://idfed.constantcontact.com/as/jkr4A9muH2/resume/as/authorization.ping WebBrowser1_Navigating javascript:void(0) WebBrowser1_Navigating https://idfed.constantcontact.com/as/jkr4A9muH2/resume/as/authorization.ping WebBrowser1_Navigating javascript:void(0)   ... View more