IRC Logs for #hypothes.is | BotBot.me [o_

0:52 AM
hslack

<jassmith> I've been attempting to generate and use a grantToken, but am getting "error: unauthorized_client" from the /api/token endpoint on my self hosted system. Couldn't find any docs describing how to configure the host, but found this https://groups.google.com/a/list.hypothes.is/fo... it indicates that the server needs CLIENT_ID, CLIENT_SECRET and SECRET_KEY. I've tried using both CLIENT_SE
0:52 AM
tested the generated jwt on jwt.io (they validate) , but never get anything else from the service
1:00 AM
<jassmith> Given ``` CLIENT_ID='123456789' CLIENT_OAUTH_ID='79a9bca6-f18a-11e7-8857-37ed8118ea77' CLIENT_SECRET='Anaconda da vida baby... python' SECRET_KEY='11111111-2222-3333-4444-555555555555'
1:00 AM
server, what are the appropriate values for aud, iss, sub I assume: ``` aud = [my h server domain] iss = '79a9bca6-f18a-11e7-8857-37ed8118ea77' sub = acct:[my username]@[my h server domain]
1:00 AM
<jassmith> @robertknight thanks in advance
1:01 AM
PaulCapestany joined the channel
1:20 AM
floryst joined the channel
2:32 AM
PaulCape_ joined the channel
3:59 AM
linuxconformer has quit
6:25 AM
floryst has quit
8:39 AM
<robertknight> @jassmith - That mailing list thread is out of date with respect to client authentication. See http://h-client.readthedocs.io/en/latest/develo...
8:41 AM
<robertknight> The only env vars that matter now are `CLIENT_OAUTH_ID` , `CLIENT_URL` (set before running “h”) and `SIDEBAR_APP_URL` (set before running the client)
11:04 AM
waloo has quit
11:29 AM
VientesiesDeJuli has left the channel
11:51 AM
M-almereyda has quit
11:56 AM
<jassmith> an hmac relies on a secret, what am I supposed to be using for it?
12:03 PM
M-dizzi90 has quit
12:04 PM
<jassmith> I'm trying to externally generate the grantToken to be used in the js-hypothesis-config.
12:04 PM
<robertknight> I re-read your message from yesterday. I gather you are trying to use our third-party accounts feature. For that, see the README of https://github.com/hypothesis/publisher-account... for instructions on how to set it up and a working demo site.
12:05 PM
<jassmith> excellent, I'll review. Thanks
12:05 PM
<robertknight> Note that this comment early in the README: “Note that this is only intended for us at Hypothesis to test the integration functionality internally, it’s not intended as a demo or example for publishers.” is purely there to reflect the fact that the demo site is ugly as sin and not designed for use in marketing materials etc.
12:06 PM
<jassmith> I'm trying to avoid having to challenge a user for a login, and to use the existing SSO to issue an appropriate JWT. Is that not an expected use case?
12:08 PM
<robertknight> That’s exactly what third party accounts is for.
12:09 PM
<jassmith> it was this bit that left me wondering " not intended as a demo or example"
12:09 PM
<robertknight> Ignore that.
12:09 PM
<jassmith> ah I understand now
12:09 PM
<jassmith> sorry
12:10 PM
<jassmith> too early, need more coffee. You've made my life easier, thank you!
14:02 PM
tarrow has quit
16:14 PM
PaulCapestany joined the channel
23:56 PM
floryst joined the channel