OAuth2 Token into Body

grehkemper · March 31, 2020, 9:07pm

Hi, I am using the “Oauth 2” - “Get New Access Token” functionality, where the token will be auto-filled into the “Access Token” field and then it allows me to “Add authorization data to Request URL or Request Headers”

My problem is: My API needs me to pass the token as an entry in the BODY (specifically, a key called token as x-www-form-urlencoded) - is there any way I can get the token to be placed in the body?

odanylewycz · April 1, 2020, 4:12am

Hi @grehkemper!

Welcome to the community!

In regards to your issue, what I would suggest in this instance is to obtain the authorization token via a pre-request script, and then saving that token as an environment variable, such as {{authToken}}.

Then using that in your form-urlencoded payload to your service, by just adding the key value pair (token / {{authToken}}.

Not sure how you need to format your request to obtain your token, but if it follows the OAuth 2.0 spec, something like so should work:

pm.sendRequest({
  url:  pm.variables.get("Auth_Url"), 
  method: 'POST',
  header: {
    'Accept': 'application/json',
    'Content-Type': 'application/x-www-form-urlencoded',
    'Authorization': pm.variables.get("Basic_Auth")
  },
  body: {
      mode: 'urlencoded',
      urlencoded: [
        {key: "grant_type", value: "password", disabled: false},
        {key: "username", value: pm.environment.get("OAUTH_USERNAME"), disabled: false},
        {key: "password", value: pm.environment.get("OAUTH_PASSWORD"), disabled: false}
    ]
  }
}
  }, function (err, res) {
    pm.environment.set("authToken", res.json().access_token);
    pm.environment.set("OAuth_Timestamp", new Date());
    
    // Set the ExpiresInTime variable to the time given in the response if it exists
    if(res.json().expires_in){
        expiresInTime = res.json().expires_in * 1000;
    }
    pm.environment.set("ExpiresInTime", expiresInTime);
  });

Filling in the correct key value pairs above

*Obtained from: How to Automate OAuth2 Token Renewal in Postman | by Allen Helton | Medium

And

https://gist.github.com/madebysid/b57985b0649d3407a7aa9de1bd327990

Hope this helps!

Orest

grehkemper · April 3, 2020, 6:13pm

@odanylewycz thanks a lot for the response. I did find a solution based on the example and some of the links your provided. It’s a super-simple one-line pre-request script:

pm.variables.set('mytoken', pm.request.auth.oauth2.get('accessToken'));

… and then i use use {{mytoken}} in the body where i need it.

Thanks!

odanylewycz · April 3, 2020, 8:17pm

Hi @grehkemper!

Wow thats sweet! I actually had no clue those methods were available through the pm class in postman’s node js module!

I learned something new. Thanks for teaching me .

Regards,
Orest

aurelien_boubennec · March 10, 2022, 4:52pm

Thank you that was super-helpful

Topic		Replies	Views
How to access oauth2 access token in a pre-request script? 🙋 Help authentication	3	6176	May 5, 2023
OAuth 2 Authorization header 🌱 Just Getting Started variables , authentication	13	4757	April 9, 2022
Can I change the body of /access_token request during the authorization code flow? 🙋 Help authorization , oauth2	1	1290	January 4, 2021
OAuth2 Get Acces Token Manually 🌱 Just Getting Started authentication , oauth2 , post , oauth2-token	3	2459	October 16, 2020
Get OAuth2 token in variable 🙋 Help authentication	1	2796	October 21, 2021

OAuth2 Token into Body

Related topics