Step 3 – Use your access token
Once you have your access token, the hard part is done. You are now ready to start making API calls! The APIs themselves will differ depending on the service, but the ways you pass your access token will remain the same. Just as there are various ways to obtain an access token (authorization code grant, implicit grant, and so on), there are multiple ways to pass your access token with an API call. They are via:
- Authorization request header field
- Form-encoded body parameter
- URI query parameter
The details of these different methods aren't important at this point. We will discuss them in more detail in Chapter 7, Use Your Access Token, when we actually use these methods to invoke API calls with Facebook for our sample application.
Referring back to our GoodApp example, we now have an access token and are now able to make a request to Facebook for the user's Facebook friends. To do this, we would make a call to the Facebook Graph API to get their...
