OAuth Recap

What We've Accomplished

Congratulations! In this section of the workshop, we've covered the first major part of OAuth: Authentication Flow (Getting the Tokens). Let's recap what you've learned:

1. Understanding OAuth Apps

• What an OAuth App is and its role in the authorization process
• The key components: Client ID, Client Secret, Scopes, and Redirect URIs
• Why OAuth is a more secure approach than sharing credentials directly

2. Authentication Flow

• The step-by-step process of requesting and obtaining authorization
• How users authenticate and grant permissions to your application
• The exchange of authorization codes for access tokens

3. Handling Redirects

• The critical redirect/callback step in the OAuth flow
• Different approaches to handling redirects in FileMaker
• Comparing web viewer and OttoFMS approaches

4. Configuring QuickBooks OAuth

• Setting up your QuickBooks Developer App with the correct callback URL
• Testing the OAuth flow with your FileMaker solution
• Successfully obtaining access tokens for API access

What's Next: Resource Access

In the next section, we'll tackle the second major part of OAuth: Resource Access (Using the Tokens).

You'll learn how to:

1. Make Authenticated API Requests

   • Include access tokens in your API requests to QuickBooks
   • Structure API requests correctly
   • Handle the responses

2. Manage Token Lifecycle

   • Store tokens securely in your FileMaker solution
   • Handle token expiration
   • Use refresh tokens to obtain new access tokens

3. Implement Real-World Features

   • Retrieve QuickBooks data into FileMaker
   • Update QuickBooks from FileMaker
   • Build practical integrations for your business needs

With the authentication flow complete and access tokens in hand, you're now ready to start accessing and manipulating QuickBooks data from your FileMaker solution.

Let's continue to the Resource Access section!