OAuth 2.0 Flow
Learn about the OAuth 2.0 authorization flow for QuickBooks integration. This guide covers the entire process from initial setup to token management.
The OAuth 2.0 flow for QuickBooks consists of several steps to securely authenticate and authorize your application.
1. Configuration
Required credentials from Intuit Developer:
- Client ID
- Client Secret
- Redirect URI
2. Authorization Request
Redirect the user to QuickBooks with:
- Client ID
- Scope (requested permissions)
- State (security token)
- Response type (code)
3. User Consent
User logs into QuickBooks and grants permissions to your application.
4. Authorization Response
QuickBooks redirects back with:
- Authorization code
- State (for validation)
- Realm ID (company ID)
5. Token Exchange
Exchange authorization code for:
- Access token
- Refresh token
- Token expiration
Access tokens expire after 1 hour. Use the refresh token to obtain new access tokens.