What data is sent when requesting an app only token with a certificate?

%3CLINGO-SUB%20id%3D%22lingo-sub-650763%22%20slang%3D%22en-US%22%3EWhat%20data%20is%20sent%20when%20requesting%20an%20app%20only%20token%20with%20a%20certificate%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-650763%22%20slang%3D%22en-US%22%3E%3CP%3EI%20am%20attempting%20to%20create%20an%20integration%20with%20the%20SharePoint%20API%20that%20requires%20no%20human%20interaction%20to%20perform%20its%20tasks.%20The%20language%20I%20am%20programming%20in%20is%20PHP.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%20far%2C%20all%20attempts%20to%20do%20so%20using%20client%20ID%2Fsecret%20have%20failed%2C%20with%20the%20use%20of%20the%20token%20returning%20%22unsupported%20app%20only%20token%22.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20been%20attempting%20to%20find%20information%20on%20using%20X.509%20certificates%20for%20my%20app%20to%20log%20in.%20However%2C%20everything%20I%20can%20find%20is%20in%20C%23%2C%20and%20does%20not%20contain%20the%20data%20I%20require.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECould%20someone%20please%20list%20the%20following%3A%3C%2FP%3E%3CP%3E-%20URL.%20I%20believe%20this%20is%20the%20same%20...%2Ftoken%20URL%20that%20the%20other%20method%20is%20supposed%20to%20use%2C%20but%20I%20could%20be%20wrong.%3C%2FP%3E%3CP%3E-%20Header%20contents.%3C%2FP%3E%3CP%3E-%20Body%20contents.%3C%2FP%3E%3CP%3E-%20Body%20format.%3C%2FP%3E%3CP%3E-%20If%20there%20is%20parsed%2Fencoded%20data%2C%20such%20as%20the%20certificate%2C%20or%20something%20from%20the%20certificate%2C%20please%20also%20include%20what%20also%20needs%20to%20be%20done%20to%20it.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%20for%20your%20time.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-650763%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAPIs%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ecertificates%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EDeveloper%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ephp%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
New Contributor

I am attempting to create an integration with the SharePoint API that requires no human interaction to perform its tasks. The language I am programming in is PHP.

 

So far, all attempts to do so using client ID/secret have failed, with the use of the token returning "unsupported app only token".

 

I have been attempting to find information on using X.509 certificates for my app to log in. However, everything I can find is in C#, and does not contain the data I require.

 

Could someone please list the following:

- URL. I believe this is the same .../token URL that the other method is supposed to use, but I could be wrong.

- Header contents.

- Body contents.

- Body format.

- If there is parsed/encoded data, such as the certificate, or something from the certificate, please also include what also needs to be done to it.

 

Thank you for your time.

0 Replies