Skip to content
Pascal Pfiffner edited this page Jun 26, 2018 · 11 revisions

Site-Specific Peculiarities

Most frequently you'll need to set oauth2.authConfig.secretInBody = true (or use secret_in_body in your settings dict) because the server expects the client secret in the request body, not the Authorization header. This goes for Github, Instagram, Pinterest, Medium, Strava and others.

Also check out these:

Clone this wiki locally