question

Joao Paulo Ferreira avatar image
Joao Paulo Ferreira asked

Which URI should I redirect to? And can I re-whitelist a Security Profile?

First of all, let me start by telling I'm developing a desktop application. In order to do so, I've created a Security Profile and whitelisted it (having received the e-mail confirming it). Unfortunately, at the time I whitelisted it, the "Consent Privacy Notice URL" was empty. I understood that would be a problem when I tried to get an Implicit Grant token with the following URL: https://www.amazon.com/ap/oa?client_id= &scope=clouddrive:read_image&response_type=token&redirect_uri=http://localhost and I got a 400 error saying the specified redirect_uri hadn't been whitelisted for my App. After that, I changed the "Consent Privacy Notice URL" to http://127.0.0.1. I first tried again with the following URL: https://www.amazon.com/ap/oa?client_id= &scope=clouddrive:read_image&response_type=token&redirect_uri=http://127.0.0.1 but it resulted in the same 400 error, with the same error message. I then tried to repeat the whitelist process but, although I got a confirmation the process was started in the website, I never got an email confirming the whitelisting. I still can't get a token, using either of the URLs. I've also tried passing an empty redirect_uri, which also gives me the 400 error, also saying the redirect_uri hasn't been whitelisted. Can anyone help me?
amazon drive
10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Jamie Grossman avatar image
Jamie Grossman answered
Hi there, Thanks the post. Regarding authentication, we recommend desktop apps opening a new web view outside of the application. I can also confirm we sent out this confirmation email for your app being whitelisted, but this has been resent just in case. Regards, Jamie
10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

aurelianr1 avatar image
aurelianr1 answered
Hello. I had the same problem. Step 1 Go to the Security Profile Management and at the Web Settings tab put https links only for both allowed origins links. Then whitelist your security profile if you have not whitelisted yet and it is done. Do not used http links because it will not work. A good example https://www.amazon.com/ap/oa?client_id= &scope=clouddrive%3Aread%20clouddrive%3Awrite&response_type=code&redirect_uri= https://roscasend.go.ro:8443/ Step 2. at your home page: https://roscasend.go.ro:8443/ put the following code from the amazon js api..
Step 3. access this url https://www.amazon.com/ap/oa?client_id= &scope=clouddrive%3Aread%20clouddrive%3Awrite&response_type=code&redirect_uri= https://roscasend.go.ro:8443/ in your browser. (You must have internet connection and your web server must be started) That's it. Best regards, Aurelian
10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.