question

shopventory avatar image
shopventory asked wm1 answered

Epxiring Access Tokens for Android and OAuth for Clover Web-App

Hi there,

Regarding the new expiring access tokens, has that been added to the Android SDK? We have a web-view app that has been implemented and it requires api access. So far we have been using the

CloverAuth.authenticate() method, but I don't see any references to expirations and refresh tokens in the documentation.

Is this available vie the SDK?

References:

Any information would be much appreciated!

REST APIClover Android SDKOAuthAPI Token
10 |2000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

bhanuka avatar image
bhanuka answered

does anyone managed to find a solution for this?

10 |2000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

michaelelias avatar image
michaelelias answered

We need an urgent reply from Clover about this. August 1st is the cut off date for when to start using OAuth 2 for API calls.

10 |2000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

wm1 avatar image
wm1 answered

Bumping and cross-posting this as we need a response from Clover preferably a few weeks before August 1st refresh token change goes live. There are several posts on this, but there is no clarity, or answers. We're just playing a guessing game.

We have an OAUTH flow for merchants to "link" their Clover, however we also have a native app which is how the vast majority of merchants start their journey.

We use CloverAuth.authenticate() (in native app) to get a token, which we then use to talk to Clover Rest API. There's even an example here describing that this token can be used to query Clover API: https://docs.clover.com/docs/query-web-services

As per @MichaelElias post - it sounds like this token CAN NOT be "migrated". So the questions are:

1. Is the token received via CloverAuth.authenticate() a long-term token and is different from OAUTH token?

2. Can the token received via CloverAuth.authenticate() be used to make REST API calls?

3. If the token received via CloverAuth.authenticate() can be "migrated" (in future?) - will it invalidate an oauth refresh-access token AND similarly, will a new OAUTH token-pair invalidate the sdk token OR can these two co-exist

10 |2000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

wm1 avatar image
wm1 answered

Bumping again.

10 |2000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Welcome to the
Clover Developer Community