Type in your question below and we'll check to see what answers we can find...
Loading article...
Submitting...
If you couldn't find any answers in the previous step then we need to post your question in the community and wait for someone to respond. You'll be notified when that happens.
Simply add some detail to your question and refine the title if needed, choose the relevant category, then post.
Before we can post your question we need you to quickly make an account (or sign in if you already have one).
Don't worry - it's quick and painless! Just click below, and once you're logged in we'll bring you right back here and post your question. We'll remember what you've already typed in so you won't have to do it again.
Please see below the most popular frequently asked questions.
Loading article...
Loading faqs...
Please see below the current ongoing issues which are under investigation.
Loading issue...
Loading ongoing issues...
Plan
Premium
Country
USA
Device
Macbook Air M1 (via curl and Postman)
Operating System
MacOs
My Question or Issue
I am attempting to get a list of my saved albums and their respective URLs. To begin, I set up a Postman collection to get the authorization token:
Auth Type: Oauth 2.0
Auth date to : request headers
token name: access_token
grant type: client credentials
access token url: https://accounts.spotify.com/api/token
client id: *
client secret: **
scope: user-library-read
client authentication: send as basic auth header
I get the new access token and set it to the current token to be used for all spotify requests.
Header prefix : Bearer
I test it on publicly available data:
Solved! Go to Solution.
You can choose another OAutfow from this page.
If you want to run the code at a back-end server, you can use the Authorization code flow.
If you want to run all the code inside your browser, you should use the Authorization code with PKCE extension.
Can I edit these posts? Where's the button for that?
Anyway that authorization setting up there is supposed to be:
Add auth data to : request headers
Authorization and Client Credentials are two different things. You can't authorize with client credentials.
Care to explain further? I don't know what you mean. I am obtaining a token from this workflow that allows me to GET other api calls without issue. It has the scopes necessary for this API call according to the documentation. I am not getting a 4xx error about my credentials. The fact that its returning a 500 at all is a problem, the application should be catching the problem and responding with a more useful error message.
In your code I see grant type: client credentials
You simply can't access (your) user data with client credentials; only endpoints that don't access user data can use client credentials.
ok cool I think I'm getting the idea. so what do I do?
You can choose another OAutfow from this page.
If you want to run the code at a back-end server, you can use the Authorization code flow.
If you want to run all the code inside your browser, you should use the Authorization code with PKCE extension.
Hey there you, Yeah, you! 😁 Welcome - we're glad you joined the Spotify Community! While you here, let's have a fun game and get…