[api notice] Use ssl.reddit.com for /api/v1/authorize and /api/v1/access

This post has been de-listed

It is no longer included in search results and normal feeds (front page, hot posts, subreddit posts, etc). It remains visible only via the author's post history.

[api notice] Use ssl.reddit.com for /api/v1/authorize and /api/v1/access_token, oauth.reddit.com for requests with bearer tokens only

Author Summary

intortus is in api notice

Post Body

Our initial OAuth 2 examples used https://oauth.reddit.com for everything. We originally intended this domain to support the authorize and access_token API calls, in addition to all OAuth 2 calls (i.e., calls with bearer tokens). However, this doesn't make for a good user interface and complicates our haproxy configs.

From this point on, use https://oauth.reddit.com only for API calls with bearer tokens. Any other request will be rejected with a 403 error. Use https://ssl.reddit.com for the authorization URL to send users to, and for the access_token API call you make to obtain the bearer token.

Author

Account Strength

100%

Account Age

16 years

Verified Email

Yes

Verified Flair

Total Karma

27,988

Link Karma

6,564

Comment Karma

21,314

Profile updated: 1 day ago

Posts updated: 7 months ago

intortus

Subreddit

r/redditdev

Post Details

Location

api notice

We try to extract some basic information from the post title. This is not always successful or accurate, please use your best judgement and compare these values to the post title and body for confirmation.

Posted: 12 years ago
Reddit URL: View post on reddit.com
External URL: reddit.com/r/redditdev/c...