I think the essence of the issue is clear, I am writing such a code to get a token, but I get an exception with error code 404

string oAuthURI = "https://instagram.com/oauth/authorize/&#8221"; oAuthURI = oAuthURI + "?client_id=9f84f5b0a59848e2af8c947bf8d81fc9&redirect_uri=http://localhost&response_type=code"; string oAuthURIwithToken = "https://api.instagram.com/oauth/access_token&#8221"; string oAuthParams = "client_id=9f84f5b0a59848e2af8c947bf8d81fc9&client_secret=95843e422e1b40b886e779321d411af3&grant_type=authorization_code&redirect_uri=http://localhost&https://instagram.com=code"; byte[] encodingParams = Encoding.UTF8.GetBytes(oAuthParams); WebRequest request = WebRequest.Create(oAuthURIwithToken); request.Method = "POST"; request.ContentType = "application/x-www-form-urlencoded"; request.ContentLength = encodingParams.Length; Stream newStream = request.GetRequestStream(); newStream.Write(encodingParams, 0, encodingParams.Length); newStream.Close(); WebResponse reponse = request.GetResponse(); StreamReader sr = new StreamReader(reponse.GetResponseStream()); var jsonObj = sr.ReadToEnd();

if someone has a ready authorization method - I will be glad to see it, thanks in advance

1 answer 1

That's right - load the URL to the user in the HTML control or web browser, allow him to enter his login and password and independently press the authorization button, and after that intercept the redirect URL (implict authorization).

Even more correct is to write a small web service, with which Instagram and your application will communicate with each other, without giving out an access token (explict-authorization). So at times safer for your application and client.

Of course, you can get a token without a browser, but first you need to log in through the forms first.

I added one method to my class from my previous answer, and I added classes for methods:

 using InstaSharp; using InstaSharp.Endpoints; using InstaSharp.Models; using InstaSharp.Models.Responses; using Newtonsoft.Json; using System; using System.Collections.Generic; using System.Net; using System.Net.Http; using System.Text; using System.Threading.Tasks; namespace InstagramClient { public class Instagram : IDisposable { private const string USER_AGENT = "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_3) " + "AppleWebKit/537.36 (KHTML, like Gecko) " + "Chrome/45.0.2414.0 Safari/537.36"; private HttpClientHandler m_Handler; private HttpClient m_Client; /// <summary> /// Аунтификация для InstaSharp по логину/паролю /// </summary> /// <param name="username">Имя пользователя</param> /// <param name="password">Пароль</param> /// <param name="config">конфиг InstaSharp</param> /// <param name="scopes">требуемые права</param> /// <returns>OAuthResponse, необходимый для дальшего использования InstaSharp</returns> public static OAuthResponse AuthByCredentials(string username, string password, InstagramConfig config, List<OAuth.Scope> scopes) { return AuthByCredentialsAsync(username, password, config, scopes).Result; } /// <summary> /// Аунтификация для InstaSharp по логину/паролю /// </summary> /// <param name="username">Имя пользователя</param> /// <param name="password">Пароль</param> /// <param name="config">конфиг InstaSharp</param> /// <param name="scopes">требуемые права</param> /// <returns>задача возвращаюая OAuthResponse, необходимый для дальшего использования InstaSharp</returns> public static async Task<OAuthResponse> AuthByCredentialsAsync(string username, string password, InstagramConfig config, List<OAuth.Scope> scopes) { using (var instagram = new Instagram()) { if (await instagram.LoginAsync(username, password)) { return await instagram.GetOauthResponse(config, scopes); } } throw new Exception("Authentification error"); } /// <summary> /// Составляет из токена OAuthResponse /// </summary> /// <param name="config">Конфиг InstaSharp</param> /// <param name="scopes">Список требуемых прав</param> /// <returns></returns> public async Task<OAuthResponse> GetOauthResponse(InstagramConfig config,List<OAuth.Scope> scopes) { var token = await GetAccessToken(config.ClientId, config.RedirectUri, BuildScopeForUri(scopes)); var auth = new OAuthResponse(); auth.AccessToken = token; auth.User = new User(); var users = new Users(config, auth); var self = await users.GetSelf(); auth.User = self.Data; return auth; } /// <summary> /// Составляет строку scope для url /// </summary> /// <param name="scopes">список требуемых прав.</param> /// <returns>список прав, разделенных плюсом.</returns> private static string BuildScopeForUri(List<OAuth.Scope> scopes) { var scope = new StringBuilder(); foreach (var s in scopes) { if (scope.Length > 0) { scope.Append("+"); } scope.Append(s.ToString().ToLower()); } return scope.ToString(); } /// <summary> /// Получает OAuth-токен /// </summary> /// <param name="clientId">id oauth-клиента</param> /// <param name="redirectUri">ссылка-редирект</param> /// <param name="scope">требуемые права</param> /// <returns>токен доступа</returns> public async Task<string> GetAccessToken(string clientId, string redirectUri, string scope) { // составляем URI для запроса на oauth-авторизацию var requestUri = string.Format( "/oauth/authorize/?client_id={0}&redirect_uri={1}&scope={2}&response_type=token", WebUtility.UrlEncode(clientId), WebUtility.UrlEncode(redirectUri), WebUtility.UrlEncode(scope) ); // Поля формы авторизации OAuth-запроса var fields = new Dictionary<string, string>() { { "csrfmiddlewaretoken", GetCSRFToken() }, { "allow", "Authorize" } }; // Требуется рефер var request = new HttpRequestMessage(HttpMethod.Post, requestUri); request.Headers.Referrer = new Uri(m_Client.BaseAddress, requestUri); request.Content = new FormUrlEncodedContent(fields); // строка под фрагмент-часть URL(то, что находится после #) string tokenFragment; // Нам нужно временно отключить авторедиректы. // К сожалению, текущая реализация HttpClientHandler'а запрещает менять свойства после первого соединения // Поэтому приходится создавать новый хендлер и клиент с теми же свойствами. using (var temporaryHandler = new HttpClientHandler()) { temporaryHandler.AllowAutoRedirect = false; temporaryHandler.CookieContainer = m_Handler.CookieContainer; using (var temporaryClient = new HttpClient(temporaryHandler)) { temporaryClient.BaseAddress = m_Client.BaseAddress; using (var response = await temporaryClient.SendAsync(request)) { tokenFragment = response.Headers.Location.Fragment; } } } // возвращаем часть фрагмента после '=' var position = tokenFragment.IndexOf('='); return tokenFragment.Substring(position+1); } /// <summary> /// Http-клиент, который после аунтификации /// можно использовать для выполнения /// различных действий на сайте . /// </summary> public HttpClient Client { get { return m_Client; } } public Instagram() { m_Handler = new HttpClientHandler(); m_Client = new HttpClient(m_Handler); m_Client.BaseAddress = new Uri("https://instagram.com/"); m_Client.DefaultRequestHeaders.UserAgent.ParseAdd(USER_AGENT); } public void Dispose() { m_Client.Dispose(); m_Handler.Dispose(); } /// <summary> /// Осуществляет вход в Instagram, /// аналогично использованию стандартной формы логина в браузере /// </summary> /// <param name="username">Логин либо e-mail</param> /// <param name="password">Пароль</param> /// <returns></returns> public async Task<bool> LoginAsync(string username, string password) { // получаем страницу входа, что бы сайт установил Cookie 'csrftoken' // содержимое страницы нам не важно await m_Client.GetAsync("/accounts/login/"); // получаем токен из Cookies string csrftoken = GetCSRFToken(); // готовим поля для формы входа var fields = new Dictionary<string, string>() { { "username", username }, { "password", password } }; // готовим запрос var request = new HttpRequestMessage(HttpMethod.Post, "/accounts/login/ajax/"); request.Content = new FormUrlEncodedContent(fields); request.Headers.Referrer = new Uri(m_Client.BaseAddress, "/accounts/login/"); // Дополнительные заголовки запроса. // Кроме X-CSRFToken, остальное в общем-то не обязательно. request.Headers.Add("X-CSRFToken", csrftoken); request.Headers.Add("X-Instagram-AJAX", "1"); request.Headers.Add("X-Requested-With", "XMLHttpRequest"); // Авторзуемся через AJAX using (var response = await m_Client.SendAsync(request)) { var info = JsonConvert.DeserializeObject<LoginInfo>(await response.Content.ReadAsStringAsync()); return info.authenticated; } } /// <summary> /// Получает из Cookies CSRF-токен /// </summary> /// <returns>CSRF-токен</returns> private string GetCSRFToken() { var cookies = m_Handler.CookieContainer.GetCookies(m_Client.BaseAddress); return cookies["csrftoken"].Value; } private class LoginInfo { public string status { get; set; } public bool authenticated { get; set; } } } }

It looks ugly, but it works fine. Too lazy to think, because deep night.

Example of use:

 string username = "user"; string password = "password"; const string clientId = "1234567890abcdef1234567890abcdef"; const string clientSecret = "1234567890abcdef1234567890abcdef"; const string redirectUri = "http://localhost/"; var config = new InstagramConfig(clientId, clientSecret, redirectUri); var scopes = new List<OAuth.Scope>() { OAuth.Scope.Basic }; var auth = Instagram.AuthByCredentials(username, password, config, scopes); var users = new Users(config, auth); var userFeed = await users.Feed(null, null, null);

Well, using the received authorization, you can perform various actions on behalf of the user on instagram.

A 404 is issued because instagram has no page with the address https://instagram.com/oauth/authorize/” .

  • you could not throw the project all this ?? - inkorpus
  • @inkorpus, skype / wk? - Sergey Rufanov
  • vk.com/muj1k in vk of course) thanks a lot that you are not indifferent - inkorpus
  • Faced two problems and would like to share solutions 1) If you run await in MainThread, then Deadlock occurs, is treated by calling ConfigureAwait (false) for all await calls (there are 7) 2) var cookies = m_Handler.CookieContainer.GetCookies (m_Client .BaseAddress) The CookieContainer has two CookieCollection ("https: //.instagram.com/" and " instagram.com/" ). Csrftoken is in the 2nd. be treated if you specify m_Client.BaseAddress = new Uri (" instagram.com/" ); - Murad