...
- curl -H "Authorization: Bearer INSERT_EDX_ACCESS_TOKEN" http://localhost:8000/api/mobile/v0.5/..
Expiration
...
Currently, our edX-issued access tokens expire in 30 days (technically 2591999 seconds).
OAuth2 -> Session Cookie
Additionally, the mobile app can exchange an access token for a session cookie to be used in a WebView:
- LoginWithAccessTokenView: 1st party (open-edx) OAuth 2.0 access token -> session cookie
- Returns a 204 (no content), but with the user's session cookies in the response.
...
Expiration
OAuth2 Client Type, Client ID, and Client Secret
...