oAuth Client Test Bed

Client ID:
Client Secret:
1) Authorization Pass your client ID to the the authorization URL (below). The user signs in and authorizes the app to have the requested permissions The user is then redirected back to the Ridirect URL (below), along with an authorization, which can be used to get a token.
Authorization URL:
Redirect URL:
Scope:

2) Convert the authorization into an authtoken The authorization proves that the user gave your app permission, but the authorization is not secure because it was visible in the user's browser and if hijacked could be used by others So now you convert it to a secure oAuth authtoken by passing that authorization back to the server - over a secure server-to-server channel (i.e., from your app, not using the browser) along with your client ID and secret, using the Token URL below. The presence of the client ID and secret prove that your app is your app. If successful, an authtoken is returned.
Token URL

3. Use the authtoken to interact with the server

You can use "POST" for any of the actions, GET for only some of them (that don't require things like file upload)

You can request results in either XML or JSON

Resource URL:

(minus verb, other data)

Resource Action:

Request JSON data (default is XML)

For JSONP, provide a callback name (&callback=...):

Verb:
Additional URL data: (will NOT be URL encoded)

(Optional): JSON-ified Flight Query:	{}
Offset:
Limit:

Tail Number:
Model ID:
Instance type ID:

Flight data JSON-ified:
Format:

Flight ID:

Pending Flight ID:

File to upload

Comment:

Latitude
(Optional)

Longitude
(Optional)

Additional params

Param Name	Param Value
FlightID:
AircraftID:

Target page

State

Output/Result: (Click to Show)

Key	Value
ASP.NET_SessionId	vm0fmm5j1cdnpuawrdohk3og
ALL_HTTP	HTTP_CONNECTION:close HTTP_ACCEPT:text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 HTTP_ACCEPT_ENCODING:zstd, br, gzip HTTP_ACCEPT_LANGUAGE:en-US,en;q=0.5 HTTP_HOST:myflightbook.com HTTP_IF_MODIFIED_SINCE:Tue, 14 Oct 2025 09:55:49 GMT HTTP_USER_AGENT:CCBot/2.0 (https://commoncrawl.org/faq/)
ALL_RAW	Connection: close Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Encoding: zstd, br, gzip Accept-Language: en-US,en;q=0.5 Host: myflightbook.com If-Modified-Since: Tue, 14 Oct 2025 09:55:49 GMT User-Agent: CCBot/2.0 (https://commoncrawl.org/faq/)
APPL_MD_PATH	/LM/W3SVC/2/ROOT/logbook
APPL_PHYSICAL_PATH	C:\MyFlightbook\logbook\
AUTH_TYPE
AUTH_USER
AUTH_PASSWORD
LOGON_USER
REMOTE_USER
CERT_COOKIE
CERT_FLAGS
CERT_ISSUER
CERT_KEYSIZE	256
CERT_SECRETKEYSIZE	2048
CERT_SERIALNUMBER
CERT_SERVER_ISSUER	C=US, S=Arizona, L=Scottsdale, O="GoDaddy.com, Inc.", OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
CERT_SERVER_SUBJECT	CN=myflightbook.com
CERT_SUBJECT
CONTENT_LENGTH	0
CONTENT_TYPE
GATEWAY_INTERFACE	CGI/1.1
HTTPS	on
HTTPS_KEYSIZE	256
HTTPS_SECRETKEYSIZE	2048
HTTPS_SERVER_ISSUER	C=US, S=Arizona, L=Scottsdale, O="GoDaddy.com, Inc.", OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
HTTPS_SERVER_SUBJECT	CN=myflightbook.com
INSTANCE_ID	2
INSTANCE_META_PATH	/LM/W3SVC/2
LOCAL_ADDR	10.128.0.2
PATH_INFO	/logbook/mvc/PlayPen/ClientTestBed
PATH_TRANSLATED	C:\MyFlightbook\logbook\mvc\PlayPen\ClientTestBed
QUERY_STRING
REMOTE_ADDR	18.97.14.88
REMOTE_HOST	18.97.14.88
REMOTE_PORT	38108
REQUEST_METHOD	GET
SCRIPT_NAME	/logbook/mvc/PlayPen/ClientTestBed
SERVER_NAME	myflightbook.com
SERVER_PORT	443
SERVER_PORT_SECURE	1
SERVER_PROTOCOL	HTTP/1.1
SERVER_SOFTWARE	Microsoft-IIS/10.0
URL	/logbook/mvc/PlayPen/ClientTestBed
HTTP_CONNECTION	close
HTTP_ACCEPT	text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8
HTTP_ACCEPT_ENCODING	zstd, br, gzip
HTTP_ACCEPT_LANGUAGE	en-US,en;q=0.5
HTTP_HOST	myflightbook.com
HTTP_IF_MODIFIED_SINCE	Tue, 14 Oct 2025 09:55:49 GMT
HTTP_USER_AGENT	CCBot/2.0 (https://commoncrawl.org/faq/)

Authorization result:
Token result:	null
POST result:

oAuth Client Test Bed

1) Authorization

2) Convert the authorization into an authtoken

3. Use the authtoken to interact with the server