Closed peterboivin closed 4 months ago
refresh tokens are all part of the super confusing (and as a result probably super secure) oauth2 authentication process used by most major api's and web sites. Basically, the client id/app key, client secret and redirect-uri from the Schwab dev portal are used to log the user in and get the refresh token. The refresh token can then be used for 7 days to generate access token(s) that are what you actually use to call the Schwab API. It's taken me a long time to somewhat understand it and there's a lot of overview material out there if you google oauth2.
check out the wiki for some step by step instructions on how to use this api client. I just put them together so let me know if they aren't clear or need more detail. https://github.com/gporter0205/schwab-api-client/wiki
Great. Thank you. I am glad I am not alone in finding it confusing.
On Wed, May 8, 2024, 2:28 PM Greg Porter @.***> wrote:
check out the wiki for some step by step instructions on how to use this api client. I just put them together so let me know if they aren't clear or need more detail. https://github.com/gporter0205/schwab-api-client/wiki
— Reply to this email directly, view it on GitHub https://github.com/gporter0205/schwab-api-client/issues/2#issuecomment-2101177426, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAO6UBZXNZKU3VPRER6FAYTZBJVDJAVCNFSM6AAAAABHNG22NGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCMBRGE3TONBSGY . You are receiving this because you authored the thread.Message ID: @.***>
I am a little foggy on refreshToken and refreshExpiration. Are these generated values? Do I get them on the Schwab dev portal?