The instructions for 2-leg oauth2 flow seems incorrect. This should not require (or even allow) the user to login. When I follow these steps, I receive a login screen. Please advise on the correct steps. Note I am using nodejs FYI
This should be a 2-legged oauth2 flow where the application logs in behind the scenes. The user should not receive a login screen (or even be redirected).
Thank you for reaching out to Constant Contact API Developer Support. My team is here to assist outside software developers with questions about building into Constant Contact's API.
I would recommend authenticating using the OAuth2.0 Server Flow so that you can use the access token and refresh token to re-authenticate without the login prompt reappearing each time. The Client Flow is typically used only if the application is unable to securely store the client secret.
For additional help with this, please let us know what kind of application you’re building so that we can offer more detailed assistance.