{"_id":"588f7dee0ef9d91b00c5d7b6","__v":0,"project":"561f8ca44d67490d00804ae5","user":{"_id":"5841a4a1ae05ac2500ba25ea","username":"","name":"Ricardo Enrique"},"initVersion":{"_id":"561f8ca44d67490d00804ae8","version":"1.0"},"createdAt":"2017-01-30T17:54:54.181Z","changelog":[{"_id":"588f7dee0ef9d91b00c5d7bb","update":"/oauth2/token endpoint to issue access tokens","type":"added"},{"_id":"588f7dee0ef9d91b00c5d7ba","update":"refactored api controllers to use access tokens based authentication","type":"added"},{"_id":"588f7dee0ef9d91b00c5d7b9","update":"refactored api controllers to keep using apikey as optional to the oauth2","type":"added"},{"_id":"588f7dee0ef9d91b00c5d7b8","update":"refactored api endpoints to validate the access token as main authentication method","type":"added"},{"_id":"588f7dee0ef9d91b00c5d7b7","update":"","type":"added"}],"body":"After months of implementing an oauth2 service we finally launched the endpoints to use it and updated the [documentation](https://api.rebuildingsociety.com/docs/oauth2token) accordingly.\n\nThis is a huge step forward to the api v2.0 which will be fully RESTful.\n\nThe next steps to take are the following:\n\n- Deprecate the \"UserKey\" concept preventing the entire api to be RESTful and disabling mobile applications to make use of the core user-related endpoints. \n- Reformat some of the json results in a way that are standard and easy to read and understand for 3th party applications.","slug":"oauth2-endpoints-now-available","title":"oauth2 endpoints now available!!"}

oauth2 endpoints now available!!


After months of implementing an oauth2 service we finally launched the endpoints to use it and updated the [documentation](https://api.rebuildingsociety.com/docs/oauth2token) accordingly. This is a huge step forward to the api v2.0 which will be fully RESTful. The next steps to take are the following: - Deprecate the "UserKey" concept preventing the entire api to be RESTful and disabling mobile applications to make use of the core user-related endpoints. - Reformat some of the json results in a way that are standard and easy to read and understand for 3th party applications.
added
/oauth2/token endpoint to issue access tokens
added
refactored api controllers to use access tokens based authentication
added
refactored api controllers to keep using apikey as optional to the oauth2
added
refactored api endpoints to validate the access token as main authentication method