To use OAuth, your application must generate well-formed, signed token request calls, and handle the responses, for the following sequence:
- Get an unauthorized request token (OAuthGetRequestToken)
- Authorize the request token (OAuthAuthorizeToken)
- Exchange the authorized request token for an access token (OAuthGetAccessToken)
All OAuth requests must be signed, whether or not your application is registered. For further information, see Signing OAuth Requests.
You can experiment with requesting and receiving authorization tokens in the OAuth Playground.
For detailed documentation, see the OAuth API Reference.
