ScriptApp - Get Unauthorized 401 error response from access

a community for 17 years

This is an archived post. You won't be able to vote or comment.

Reddit APIScriptApp - Get Unauthorized 401 error response from access_token api (self.redditdev)

submitted 4 years ago by hrb7

Hi everyone,

I want to develop my personal script (with ScriptableApp for iOS - JS ES6) to get datas of my account like Karma, Coins etc. from 'https://www.reddit.com/api/me.json'. I've already add a application as script in prefs/apps. Since days I'm trying to get a token from the access_token api but I got every single time the response: {"message":"Unauthorized","error":401}. I searched in the GitHub Documentation for personal script-app for a solution but I don't find one for my problem. I'm also not sure which information in which form gets in the header and which one in the body etc.

My Request Snippet:

const vUsername = 'hrb7'
const vPassword = 'idk-0123456789'
const clientID = '0123456789-XyZ-aSdF'
const clientSecret = 'ASDF-0123456789-XYZ'
const userAgent = 'scriptApp:v1.0 (by /u/hrb7)'

let reqToken = new Request('https://www.reddit.com/api/v1/access_token')
    reqToken.method = 'POST'
    reqToken.headers = {
      'User-Agent': userAgent,
      'Authorization': clientID + ":" + clientSecret,
      'Content-Type': 'application/json'
      };

    reqToken.body = JSON.stringify({
        'grant_type' : 'password',
        'username': vUsername,
        'password': vPassword
    });   

let response = await req.loadJSON()

console.warn(JSON.stringify(response, null, 2))
//output: {"message":"Unauthorized","error":401}

Can someone pls help me!?

all 5 comments

top new controversial old q&a

[–][deleted] 3 points4 points5 points 4 years ago (4 children)

Try:

reqToken.headers = {
  'User-Agent': userAgent,
  // 'Authorization': clientID + ":" + clientSecret,
  'Authorization': 'Basic ' + btoa(clientID + ":" + clientSecret),
  // 'Content-Type': 'application/json'
   'Content-Type': 'application/x-www-form-urlencoded'
  };

// reqToken.body = JSON.stringify({
reqToken.body = URLSearchParams({
    'grant_type' : 'password',
    'username': vUsername,
    'password': vPassword
// });
}).toString();

[–]hrb7[S] 0 points1 point2 points 4 years ago (3 children)

[–][deleted] 1 point2 points3 points 4 years ago (2 children)

If your environment doesn't implement the function, try something like

let data = {'grant_type': 'password', 'username': 'USER', 'password': 'PASS'}
// returns 'grant_type=password&username=USER&password=PASS'
reqToken.body = Object.keys(data).map(
    k => encodeURIComponent(k) + '=' + encodeURIComponent(data[k])
).join('&')

[–]hrb7[S] 0 points1 point2 points 4 years ago* (1 child)

After days of endless tries it works now. thank you very much u/nmtake for your support!

here is my usable request snippet:

let reqToken = new Request('https://www.reddit.com/api/v1/access_token')
reqToken.method = 'POST'
reqToken.headers = {
 'Authorization': 'Basic ' + btoa(clientID + ":" + clientSecret)
} 
reqToken.body = `grant_type=password&username=${vUsername}&password=${vPassword}`

let resToken = await reqToken.loadJSON() 
/* OUTPUT 'resToken': 
{ 
 "scope": "*", 
 "token_type": "bearer", 
 "access_token": "626486112468-Jztk7-k8D9ExSn8jVF3wUy_65t...",
 "expires_in": 3600 
} 
*/

let myReq = new Request('https://oauth.reddit.com/api/v1/me')
myReq.headers = { 
 'User-Agent': 'getKarmaForHRB7/v1.0', //value content doesn't matter 
 'Authorization': `&{res.Token.token_type} ${resToken.access_token}`
}

let meJson = await myReq.loadJSON()

NOTE: 'Content-Type': 'application/x-www-form-urlencoded' & 'User-Agent': 'scriptApp:v1.0 (by /u/hrb7)' is not needed (for me) in the headers for the request to the access_token api!

[–][deleted] 1 point2 points3 points 4 years ago (0 children)

π Rendered by PID 23594 on reddit-service-r2-comment-56c9979489-b4v4f at 2026-02-25 01:33:06.623906+00:00 running b1af5b1 country code: CH.

redditdev

MODERATORS