Protected Profile API Access

API Discussion
1

Is there a way to access to this endpoint?
/profile/user/wow/protected-character/{realmId}-{characterId}
I’ve lost days trying to access to this endpoint in python. My Authorization flow is the following:

  1. Firstly I go to: 'https://eu.battle.net/oauth/authorize?access_type=online&client_id=' + client_id + '&redirect_uri=' + redirect_uri + '&response_type=code&state='

  2. Then from that url I’ll get the authorization code that I use for the curl command: ‘curl -X POST https://eu.battle.net/oauth/token -u ’ + client_id + ‘:’ + client_secret +
    ’ -d redirect_uri=’ + redirect_uri +’ -d scope=wow.profile’ +
    ’ -d grant_type=client_credentials -d code=’ + auth_code + ’ > ’ + path + ‘token.txt’

  3. After that I build the resource request: 'https://us.api.blizzard.com/profile/user/wow/protected-character/'+realm_id + '-' + pg_id + '?namespace=profile-eu&locale=it_IT&access_token=' + access_token['access_token']

But I always get nothing, error 403. I supposed that is because of “grant_type” parameter in the curl (correct me if I wrong), so, I tryied different parameters for grant_type, as password and authorization code, but always the same error. Someone Can help me?

1 Like
2

Your /oauth/authorize request in step 1 needs the wow.profile scope parameter. Blizzard Battle.net Developer Portal

Your /oauth/token request in step 2 needs the grant_type=authorization_code parameter.

3

Thanks a lot :smiley: