Authorization API Error Response Changes

Thank you for using Yahoo! JAPAN Ads.

We have changed the error response of Yahoo! JAPAN Ads API Authorization API. Please see the following details.
Once again, thank you for using Yahoo! JAPAN Ads.

               
1. Product:
Yahoo! JAPAN Ads API Authorization API

2. Effective date:
October 19, 2020 (Mon)

3. Overview:
We have changed the authorization API error response to a status code that conforms to RFC6749.
The specific changes are as follows.

■Status code change
・"/oauth/v1/authorize" end point
Changed the return contents when making a request without "response_type" and "scope" parameters.

Before Return status code 400
After Return an error as 302 redirect
* The error response will be returned in accordance with RFC6749


・/oauth/v1/token end point
Changed the return contents when requesting with parameters different from registered "client_id" or "client_secret."

Before Return status code 401
After Return status code 400



■Error detail
We have changed the content of the error response of the authorization API as follows.

Before eturn HTML with no error content
After * The error response will be returned in accordance with RFC6749



4. Remarks:
In RFC6749, the error response status code and error content are defined for each endpoint.
See the following each website for the detail of error response.

・/oauth/v1/authorize
 RFC6749 §4.1.2.1
・/oauth/v1/token
 RFC6749 §5.2
・/oauth/v1/revoke
 RFC7009 §2.2.1