Andrew Connell

Inspecting the SharePoint OAuth Token with a Fiddler Extension

A few months ago Kirk Evans of Microsoft published two blog posts explaining the SharePoint tokens and then followed it up with a custom Fiddler extension he wrote that you can use to extract, decode and inspect the OAuth token used in SharePoint 2013: Kirk Evans: Inside SharePoint 2013 OAuth Context Tokens Kirk Evans: Creating a Fiddler Extension for SharePoint 2013 App Tokens I pushed Kirk to put his extension in GitHub so others could grab the source, which he does share on his blog, but could also log issues, enhancements as well as fork it to improve it. Kirk asked me to post it to GitHub for him, so I've done just that at the following URL. Please fork and contribute to the project! » GitHub: SPOAuthFiddlerExt (SharePoint OAuth Fiddler Extension)...

A few months ago Kirk Evans of Microsoft published two blog posts explaining the SharePoint tokens and then followed it up with a custom Fiddler extension he wrote that you can use to extract, decode and inspect the OAuth token used in SharePoint 2013:

I pushed Kirk to put his extension in GitHub so others could grab the source, which he does share on his blog, but could also log issues, enhancements as well as fork it to improve it. Kirk asked me to post it to GitHub for him, so I’ve done just that at the following URL. Please fork and contribute to the project!

» GitHub: SPOAuthFiddlerExt (SharePoint OAuth Fiddler Extension)

Andrew Connell
Developer & Chief Course Artisan, Voitanos LLC. | Microsoft MVP
Written by Andrew Connell

Andrew Connell is a web developer with a focus on Microsoft Azure & Microsoft 365. He’s received Microsoft’s MVP award every year since 2005 and has helped thousands of developers through the various courses he’s authored & taught. Andrew’s the founder of Voitanos and is dedicated to delivering industry-leading on-demand video training to professional developers. He lives with his wife & two kids in Florida.