Log in | Register
  1. Forum
  3. Discontinued Products
  5. JFBConnect v8.x Support (Joomla 3 Only) (CLOSED)
  7. Yahoo API Error

Topic-icon Yahoo API Error

Active Subscriptions:

None
9 years 3 months ago #61058 by Dayo
Yahoo API Error was created by Dayo
Hello,

I have an issue with Yahoo and get the following Joomla system message:
Yahoo API Error: Access forbidden for the user as cookie validation failed

Basically, get directed to Yahoo, accept the connection request but get returned to the website and the error message comes up.

Any insights?

Thanks
The topic has been locked.
Support Specialist
9 years 3 months ago #61063 by alzander
Replied by alzander on topic Yahoo API Error
That's not an error I've heard of with Yahoo before, but the general gist of the message would indicate that the Application Secret isn't correct in JFBConnect. Check your Yahoo application settings and make sure you copied the API and Secret keys over exactly.

Beyond that, make sure you've followed every step of our Yahoo Application Setup Guide to make sure all the settings are correct for your app.

I hope that helps, even though it's kind of a vague answer. If not though, let us know and we'll gladly help further.

Thanks,
Alex
The topic has been locked.
Active Subscriptions:

None
9 years 2 months ago #61158 by Dayo
Replied by Dayo on topic Yahoo API Error
Thanks Alex,

Some feedback on this issue

1. I couldn't get the JFBConnect Yahoo login to work and always came up with the API Error message. Entered and reentered my id several times to no effect.
2. I noticed that the JFBConnect Yahoo code assumes an OAuth1 flow while Yahoo appears to have switched to an OAuth2 flow. Actually, documentation on the OAuth1 flow on the Yahoo website returns a 404 error.
3. I changed the JFBConnect code for Yahoo to follow an OAuth2 flow, and the login now works ... with the same id creds as before that didn't work with the supplied OAuth1 flow.

So, I think a second look at the JFBConnect Yahoo code might be needed and that an update might be required.

Also, the documentation currently suggests using 'Read Public' under 'Profiles (Social Directory)'. However, this now only returns the user guid as anything of value in terms of authentication and the users therefore still gets the registration page to fill in the first time. To get the user's name, email address and such, 'Read/Write Public and Private' needs to be selected from my tests.

I chose to stick with the limited 'Read Public' as asking people for Write Access to their stuff seemed a step too far and anyone actually reading the request would most likely decline. This limitation on the 'Read Public' scope severely limits the usefulness of Yahoo as a OAuth provider IMO. Facebook has more or less the same scope here but has the option to additionally request the email address. With Yahoo, you either get nothing or have to ask for everything.

Anyway, hope the update is useful.
The topic has been locked.
Support Specialist
9 years 2 months ago #61177 by mel
Replied by mel on topic Yahoo API Error
Thank you for your detailed investigation. I've added an issue to our tracker to investigate this. I'm working on testing the next release of JFBConnect and will try to look into this for the release.

-Melissa
The topic has been locked.
Active Subscriptions:

None
9 years 2 months ago #61180 by Dayo
Replied by Dayo on topic Yahoo API Error
Good luck with the tests and release.

Finally settled on the openid connect flow with the elevated permissions request...scope = 'openid sdpp-w'.

Also implemented a Disqus oauth2 provider. They don't return firstname / lastname but email is always sent.

Anyway, looking forward to the update!
The topic has been locked.
Support Specialist
9 years 2 months ago #61292 by mel
Replied by mel on topic Yahoo API Error
I just wanted to point out that this did not make it into the 7.2.0 release that I put out last night. It's still in our issue list but I had to put the release out asap for a Facebook issue.

-Melissa
The topic has been locked.
Active Subscriptions:

None
9 years 2 months ago #61390 by fratan
Replied by fratan on topic Yahoo API Error
Hi,
I have the same problem with the Yahoo API, so please let us know when the fix is available.
Regards,
Franck
The topic has been locked.
Support Specialist
9 years 1 month ago #61395 by mel
Replied by mel on topic Yahoo API Error
We're starting the development on the next minor release 7.2.1 and should be addressing this then.
The topic has been locked.
Active Subscriptions:

None
9 years 1 month ago - 9 years 1 month ago #61396 by Dayo
Replied by Dayo on topic Yahoo API Error
Attached are files from my hacked version:

- /components/com_jfbconnect/libraries/profile/yahoo.php
- /components/com_jfbconnect/libraries/provider

Works for me but Caveat Emptor!

Might be helpful to Mel in updating things as well.

Remember the first rule of hacking someone else's work ... never overwrite their stuff. So, rename the existing files in the folders which are under /components/com_jfbconnect/libraries and then put these in instead.

Your Yahoo App needs to request 'Read/Write Public and Private' in the permissions. If you had previously followed the instructions and set up the App to request 'Read Public', this can't be changed and you will need to add a new App, or delete and add the App again if you want to maintain the name, with the new permission request and use this instead.

Remember to update the Yahoo API Keys in JFBC.



yahoo-fix.zip
Last edit: 9 years 1 month ago by Dayo.
The topic has been locked.
  1. Forum
  3. Discontinued Products
  5. JFBConnect v8.x Support (Joomla 3 Only) (CLOSED)
  7. Yahoo API Error
From the Blog
Facebook | Twitter | LinkedIn | Blog RSS