Added bin/strava-refresh-token.

dblock · dblock · commit 21d692c9730a · 2025-10-20T13:11:36.000-04:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,6 @@
 ### 3.0.0 (Next)
 
+* [#97](https://github.com/dblock/strava-ruby-client/pull/97): Added `bin/strava-refresh-token` - [@dblock](https://github.com/dblock).
 * [#96](https://github.com/dblock/strava-ruby-client/pull/96): Update and refactor models to spec - [@dblock](https://github.com/dblock).
 * [#94](https://github.com/dblock/strava-ruby-client/pull/94): Adds video fields to `Strava::Models::Photo` - [@dblock](https://github.com/dblock).
 * [#92](https://github.com/dblock/strava-ruby-client/pull/92): Fixes `Hashie::Trash` serialization warning for `object_id` of `Strava::Webhooks::Models::Event` - [@simonneutert](https://github.com/simonneutert).
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -29,23 +29,37 @@ bundle exec rake
 
 ### Obtain a Strava Token
 
-The token from the Strava website does not have enough permissions to retrieve your own activities. 
-Use the [strava-oauth-token tool](#strava-oauth-token) to obtain a short lived with more access scopes.
+The token from the Strava website does not have enough permissions to retrieve your own activities, therefore you need to complete the OAuth workflow with additional permissions.
+
+Use the [strava-oauth-token tool](#strava-oauth-token) once.
 
 Obtain `STRAVA_CLIENT_ID` and `STRAVA_CLIENT_SECRET` from [My API Application](https://www.strava.com/settings/api).
 
 ```bash
 export STRAVA_CLIENT_ID=...
 export STRAVA_CLIENT_SECRET=...
+
 bundle exec ruby bin/strava-oauth-token
 ```
 
-This will open a browser window. Complete the OAuth workflow and note `access_token`.
+This will open a browser window. Complete the OAuth workflow and note `refresh_token` and `access_token`. Set `STRAVA_ACCESS_TOKEN` to the value of `access_token`.
 
 ```
 export STRAVA_ACCESS_TOKEN=...
 ```
 
+You can repeat the process above when the token expires, or use the `refresh_token`, which is faster.
+
+```bash
+export STRAVA_CLIENT_ID=...
+export STRAVA_CLIENT_SECRET=...
+export STRAVA_API_REFRESH_TOKEN=...
+
+bundle exec ./bin/strava-refresh-token
+```
+
+Set `STRAVA_ACCESS_TOKEN` to the value of `access_token`.
+
 ### Create a Topic Branch
 
 Make sure your fork is up-to-date and create a topic branch for your feature or bug fix.
diff --git a/README.md b/README.md
@@ -104,16 +104,30 @@ Note that the token from the Strava website does not have enough permissions to
 ```bash
 export STRAVA_CLIENT_ID=...
 export STRAVA_CLIENT_SECRET=...
+
 bundle exec ruby bin/strava-oauth-token
 ```
 
-Note the `access_token` from the browser window.
+Set `STRAVA_ACCESS_TOKEN` to the value of `access_token` from the browser window and save `refresh_token` in a secure location.
 
 ```bash
 export STRAVA_ACCESS_TOKEN=...
+
 bundle exec ruby bin/strava-activities.rb
 ```
 
+You can repeat the process above when the token expires, or use the `refresh_token`, which is faster.
+
+```bash
+export STRAVA_CLIENT_ID=...
+export STRAVA_CLIENT_SECRET=...
+export STRAVA_API_REFRESH_TOKEN=...
+
+bundle exec ./bin/strava-refresh-token
+```
+
+Set `STRAVA_ACCESS_TOKEN` to the value of `access_token`.
+
 ### Activities
 
 #### Create an Activity
diff --git a/bin/strava-oauth-token b/bin/strava-oauth-token
@@ -5,44 +5,52 @@ require 'dotenv/load'
 require 'webrick'
 require 'strava-ruby-client'
 
-server = WEBrick::HTTPServer.new(Port: 4242)
+begin
+  server = WEBrick::HTTPServer.new(Port: 4242)
 
-trap 'INT' do
-  server.shutdown
-end
+  trap 'INT' do
+    server.shutdown
+  end
 
-client = Strava::OAuth::Client.new(
-  client_id: ENV.fetch('STRAVA_CLIENT_ID', nil),
-  client_secret: ENV.fetch('STRAVA_CLIENT_SECRET', nil)
-)
-
-server.mount_proc '/' do |req, res|
-  code = req.query['code']
-  response = client.oauth_token(code: code)
-
-  res.body = %(
-<html>
-  <body>
-    <ul>
-      <li>token_type: #{response.token_type}</li>
-      <li>refresh_token: #{response.refresh_token}</li>
-      <li>access_token: #{response.access_token}</li>
-      <li>expires_at: #{response.expires_at}</li>
-    </ul>
-  <body>
-</html>
-  )
+  client_id = ENV.fetch('STRAVA_CLIENT_ID', nil) || raise('Missing STRAVA_CLIENT_ID.')
+  client_secret = ENV.fetch('STRAVA_CLIENT_SECRET', nil) || raise('Missing STRAVA_CLIENT_SECRET.')
 
-  server.shutdown
-end
+  client = Strava::OAuth::Client.new(
+    client_id: client_id,
+    client_secret: client_secret
+  )
 
-redirect_url = client.authorize_url(
-  redirect_uri: 'http://localhost:4242/',
-  response_type: 'code',
-  scope: 'read_all,activity:read,activity:read_all,profile:read_all,profile:write,activity:write'
-)
+  server.mount_proc '/' do |req, res|
+    code = req.query['code']
+    response = client.oauth_token(code: code)
+
+    res.body = %(
+  <html>
+    <body>
+      <ul>
+        <li>token_type: #{response.token_type}</li>
+        <li>refresh_token: #{response.refresh_token}</li>
+        <li>access_token: #{response.access_token}</li>
+        <li>expires_at: #{response.expires_at}</li>
+      </ul>
+    <body>
+  </html>
+    )
+
+    server.shutdown
+  end
+
+  redirect_url = client.authorize_url(
+    redirect_uri: 'http://localhost:4242/',
+    response_type: 'code',
+    scope: 'read_all,activity:read,activity:read_all,profile:read_all,profile:write,activity:write'
+  )
 
-server.logger.info "opening browser at #{redirect_url}\n"
-system 'open', redirect_url
+  server.logger.info "opening browser at #{redirect_url}\n"
+  system 'open', redirect_url
 
-server.start
+  server.start
+rescue Faraday::ClientError => e
+  puts e.message
+  puts e.response[:body]
+end
diff --git a/bin/strava-refresh-token b/bin/strava-refresh-token
@@ -0,0 +1,32 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+require 'dotenv/load'
+require 'webrick'
+require 'strava-ruby-client'
+
+begin
+  client_id = ENV.fetch('STRAVA_CLIENT_ID', nil) || raise('Missing STRAVA_CLIENT_ID.')
+  client_secret = ENV.fetch('STRAVA_CLIENT_SECRET', nil) || raise('Missing STRAVA_CLIENT_SECRET.')
+  refresh_token = ENV.fetch('STRAVA_API_REFRESH_TOKEN', nil) || raise('Missing STRAVA_API_REFRESH_TOKEN.')
+
+  client = Strava::OAuth::Client.new(
+    client_id: client_id,
+    client_secret: client_secret
+  )
+
+  response = client.oauth_token(
+    refresh_token: refresh_token,
+    grant_type: 'refresh_token'
+  )
+
+  puts 'The Strava API refresh token has changed, it will need to be updated.' if refresh_token != response.refresh_token
+
+  puts "token_type: #{response.token_type}"
+  puts "refresh_token: #{response.refresh_token}"
+  puts "access_token: #{response.access_token}"
+  puts "expires_at: #{response.expires_at}"
+rescue Faraday::ClientError => e
+  puts e.message
+  puts e.response[:body]
+end
