CLIENT_ID
and a CLIENT_SECRET
. The CLIENT_SECRET
must be kept safe and used only in exchanges between your application’s server and Smartcar’s .
code
query parameter that must be exchanged with Smartcar’s authorization server for an ACCESS_TOKEN
.
The redirect URIs must match one of the following formats:
Protocol | Format | Example |
---|---|---|
HTTP | a localhost URI with protocol http:// | http://localhost:8000 |
HTTPS | a URI with protocol https:// | https://myapplication.com |
JavaScript SDK | https://javascript-sdk.smartcar.com/v2/redirect?app_origin={localhost-or-HTTPS-origin} | https://javascript-sdk.smartcar.com/v2/redirect?app_origin=https://myapp.com |
Custom-scheme | sc{clientId}://{hostname-with-optional-path-component-or-TLD} | sc4a1b01e5-0497-417c-a30e-6df6ba33ba46://callback |
sc{clientId}
and can have an optional path or TLD. See the OAuth reference on redirect URIs.