EVE Technology Lab

So there's this new esi API available, the documentation of endpoints is on swagger. And works very well.
Unfortunately I was unable to find any documentation on the authorization process.
I've found some explanation about authorization here http://eveonline-third-party-documentation.readthedocs.io/en/latest/sso/intro.html
but, from reverse engineering the new documentation site https://esi.tech.ccp.is it seems tat the authorization has also changed
for example: the old authorization was made of two requests one will return code and the other token
the new one returns the token on the same run like this:
http://dev.eve-pi-manager.space/auth/callback#access_token=UCwg_h13JRChKLhoSKYrvwb8PxqPRQEe18JLMfxKZmLdN5UO99PR1jz9nhjxxx8TF46qqBH5DTaPZ3IV_Yt6RA2&token_type=Bearer&expires_in=1200&state=evesso

I was unable to find any documentation about the response (for example "expires_in" minutes/seconds/years...) nor about the request itself: what does "realm", "state" means

Does anyone know any info about it? Did I miss a documentation website?

Thanks!

Take a look at this project: https://github.com/y0ti/eve-custom-launcher , especially at the file https://github.com/y0ti/eve-custom-launcher/blob/master/eveCustomLauncher/EveLauncher.cs

I'm assuming you went on the dev site and requested the new esi scopes for what you are trying to use? The SSO process is the same but CREST scopes != ESI scopes. As if you are able to get a token/refresh token you did it right.

https://developers.eveonline.com/applications

EDIT: Rereading your post. expires_in is in seconds as all tokens only live for 20min. After 20min you would have to use a refresh_token to get a new normal token. State is an An opaque value used by the client to maintain state between the request and callback. Optional but recommended.