How do I obtain a user token?

    1. The initial Request URL must be URL encoded, use the GET verb.Example URL profile email fundraise&redirect_uri= The URL has the following parameters:


      2. client_id={yourApplicationId}

      3. response_type=code

      4. scope=openid profile email fundraise
        1. The scope parameter is a space delimited list of the data the Third Party would like to read. The minimal scopes you must request are "openid" and "profile". OAuth authorisation cannot continue without these. Other possible scopes are


          Create, modify and view fundraising pages and team pages on your behalf


          Create, modify and view your JustGiving user account


          View and modify rated content


          View information about people you know

      5. redirect_uri=https://\{}/{yourcallback} This is the "callback" location on the Third-party Application. The part of the Third-party Application that contains the logic to use the "code" returned from the Resource Server and use that to request a token from the Resource Server

      6. state={YourStateLocation} You can use state to allow your application to pick up where it left off, before the redirect to The Resource Server

      7. nonce={GUIDyouGenerate} This is a one off randomly generated value to prevent the request from getting modified. A GUID is best as it ensures uniqueness.

  2. The logo and your application name displayed on the Authorisation Page are specified when you register your application and create your applicationId at

  3. No extra information required

  4. Store the querystring parameter "code" as it will be used in the next call to the Resource Server

  5. Create a request with the following parameters

POST: /connect/token?code={codeFromResourceServer}&grant_type=authorization_code&redirect_uri={yourCallback}


Authorization: Basic {yourBase64EncodedCredentials}

    1. NOTE: To generate { yourBase64EncodedCredentials } navigate to in the "login email" enter your applicationId and in the "password" field enter your secret key, then click on "Generate basic auth header"

  1. The response will contain JSON formatted token data

"access_token" : "ab49.HAUS6ZxXz",
"token_type" : "Bearer",
"expires_in" : 3600


Have more questions? Submit a request


Article is closed for comments.