Authenticate App User with Pandora

This tutorial shows the basic steps need for user authentication and authorization. The user is put through an OAuth 2.0 allowing a third party to access the Pandora API on their behalf. This tutorial uses the classic authorization code grant flow, but the device flow grant could be used instead for input-constrained devices. A use case for this flow is a user authorizing a web client to access Pandora APIs on their behalf. The web client uses an access token to look up details about the user, fetch playlists, etc.

The steps include:

  1. Authentication & Authorization
  2. Get access token
  3. Query a Pandora resource
  4. (Optional) Refresh access token after expiry