Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Authentication methods: How to use Client Credentials Grant

Doug Walter
Doug Walter
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 28, 2019

I am trying to follow example 4 from the authentication documentation:

https://developer.atlassian.com/bitbucket/api/2/reference/meta/authentication

$ curl -X POST -u "client_id:secret" \
  https://bitbucket.org/site/oauth2/access_token \
  -d grant_type=client_credentials

 

I have created an OAuth Consumer. I take the "Secret" that is generated from this Consumer and simply plug it in the example above for "secret", and I receive an "unauthorized client" result, when I expect to get back an access token.

Result:

{"error_description": "Invalid OAuth client credentials", "error": "unauthorized_client"}%

 I have also ensured the consumer I have created as all permissions available. 

 

Am I plugging the wrong value into the secret section? Or what else could I be doing incorrectly? 

Answer
Watch
Like Be the first to like this
1751 views

1 answer

0 votes
balanici
balanici
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 28, 2019

curl -X POST -vu client_id:secret 'http://localhost:8080/api/oauth/token?username=userlogin&password=userpass&grant_type=password'

you'll get access_token in json object

Then you can access protected resource

curl -i -H "Authorization: Bearer your-token-here-4ODQ0NjUtZ-very-long-hash" http://localhost:8080/api/users/3

View More Comments
Doug Walter
Doug Walter
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 28, 2019

Thanks for the response.

I did see the username password approach under step 3 (https://developer.atlassian.com/bitbucket/api/2/reference/meta/authentication)

 

However, I was concerned that this method will not work when the user has two-step verification enabled.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security