Authorize a browser client

Redirects the user to Yoto's login page to begin the OAuth2 Authorization Code flow

Responses

302

Redirects to login page or callback URL application/json

Schema

No schema available for this response.

JSON

No example response provided in the API specification.

400

Bad request application/json

Schema

errorstring

― invalid_request

― unauthorized_client

― access_denied

― unsupported_response_type

― invalid_scope

― server_error

― temporarily_unavailable

error_descriptionstring

error_uristring · uri

JSON

{
  "error": "invalid_request",
  "error_description": "string",
  "error_uri": "https://example.com"
}

Query Parameters

audience string Required

Example https://api.yotoplay.com

scope string Required

Example offline_access openid profile

response_type string Required

Allowed values

codetokenid_tokencode tokencode id_tokentoken id_tokencode token id_token

client_id string Required

redirect_uri string Required

state string Required

Opaque value for preventing CSRF attacks

nonce string

String value to prevent replay attacks

prompt string

Specifies the authorization server prompt behavior

Allowed values

noneloginconsentselect_account

max_age integer

Maximum authentication age in seconds

code_challenge string

PKCE code challenge

code_challenge_method string

PKCE code challenge method

Allowed values

S256plain

GET

/authorize

Server URL: https://api.yotoplay.com

Authorization (bearerAuth)

Token

Query Parameters

KEY	VALUE
audience
scope
response_type
client_id
redirect_uri
state
nonce
prompt
max_age
code_challenge
code_challenge_method

Try it out

cURL

curl "https://api.yotoplay.com/authorize"
--header "Authorization: Bearer [YOUR_TOKEN]"

JavaScript

const options = {
  method: 'GET',
  headers: {
    'Authorization': 'Bearer [YOUR_TOKEN]'
  }
};

fetch('https://api.yotoplay.com/authorize', options)
  .then(response => response.json())
  .then(response => console.log(response))
  .catch(err => console.error(err));

PHP

<?php

$curl = curl_init();

curl_setopt_array($curl, [
  CURLOPT_URL => "https://api.yotoplay.com/authorize",
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => "",
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 30,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => "GET",
  CURLOPT_HTTPHEADER => [
    "Authorization: Bearer [YOUR_TOKEN]"
  ],
]);

$response = curl_exec($curl);
$err = curl_error($curl);

curl_close($curl);

if ($err) {
  echo "cURL Error #:" . $err;
} else {
  echo $response;
}

Python

import requests

url = "https://api.yotoplay.com/authorize"

headers = {
    "Authorization": "Bearer [YOUR_TOKEN]"
}

response = requests.request("GET", url, headers=headers)

print(response.text)