Gillis Werrebrouck
Gillis Werrebrouck

Reputation: 449

How can I get a list of playlists by user with the spotify web api?

I'm working on a project and I would like to get a list of all the playlists of the logged in user on spotify. Currently I can loggin and see user info (by following the demo on spotify). Now I want to get the playlists of the user that is logged in and that is where I'm stuck.

This is the code I have:

 * This is an example of a basic node.js script that performs
 * the Authorization Code oAuth2 flow to authenticate against
 * the Spotify Accounts.
 * For more information, read

var express = require('express'); // Express web server framework
var request = require('request'); // "Request" library
var querystring = require('querystring');
var cookieParser = require('cookie-parser');

var client_id = '2e54c888b964418588d8c274d2b9dd5e'; // Your client id
var client_secret = 'c7b15e90a3cb4891b3dbcd79ed8bcfa0'; // Your secret
var redirect_uri = 'http://localhost:8888/callback'; // Your redirect uri

 * Generates a random string containing numbers and letters
 * @param  {number} length The length of the string
 * @return {string} The generated string
var generateRandomString = function(length) {
  var text = '';
  var possible = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';

  for (var i = 0; i < length; i++) {
    text += possible.charAt(Math.floor(Math.random() * possible.length));
  return text;

var stateKey = 'spotify_auth_state';

var app = express();

app.use(express.static(__dirname + '/public'))

app.get('/login', function(req, res) {
  var state = generateRandomString(16);
  res.cookie(stateKey, state);

  // your application requests authorization
  var scope = 'user-read-private user-read-email';
  res.redirect('' +
        response_type: 'code',
        client_id: client_id,
        scope: scope,
        redirect_uri: redirect_uri,
        state: state

app.get('/playlists', function(req, res) {
  // your application requests authorization
  var scope = 'playlist-read-private';

app.get('/callback', function(req, res) {

  // your application requests refresh and access tokens
  // after checking the state parameter

  var code = req.query.code || null;
  var state = req.query.state || null;
  var storedState = req.cookies ? req.cookies[stateKey] : null;

  if (state === null || state !== storedState) {
    res.redirect('/#' +
        error: 'state_mismatch'
  } else {
    var authOptions = {
      url: '',
      form: {
        code: code,
        redirect_uri: redirect_uri,
        grant_type: 'authorization_code'
      headers: {
        'Authorization': 'Basic ' + (new Buffer(client_id + ':' + client_secret).toString('base64'))
      json: true
    };, function(error, response, body) {
      if (!error && response.statusCode === 200) {

        var access_token = body.access_token,
            refresh_token = body.refresh_token;

        var options = {
          url: '',
          headers: { 'Authorization': 'Bearer ' + access_token },
          json: true

        // use the access token to access the Spotify Web API
        request.get(options, function(error, response, body) {

        // we can also pass the token to the browser to make requests from there
        res.redirect('/#' +
            access_token: access_token,
            refresh_token: refresh_token
      } else {
        res.redirect('/#' +
            error: 'invalid_token'

app.get('/refresh_token', function(req, res) {

  // requesting access token from refresh token
  var refresh_token = req.query.refresh_token;
  var authOptions = {
    url: '',
    headers: { 'Authorization': 'Basic ' + (new Buffer(client_id + ':' + client_secret).toString('base64')) },
    form: {
      grant_type: 'refresh_token',
      refresh_token: refresh_token
    json: true
  };, function(error, response, body) {
    if (!error && response.statusCode === 200) {
      var access_token = body.access_token;
        'access_token': access_token

console.log('Listening on 8888');

The lines with:

app.get('/playlists', function(req, res) {
  // your application requests authorization
  var scope = 'playlist-read-private';

are the ones I wrote myself but I don't know how I can make it work.

Upvotes: 1

Views: 3120

Answers (1)


Reputation: 3602

Spotify API playlists endpoint requires authentication token.

Very primitive example, in those lines you can get Auth Token:

  // use the access token to access the Spotify Web API
    request.get(options, function(error, response, body) {
      token = access_token;

Then, your code for getting playlists:

var token = '';                                                                                                                                                                                                                           

app.get('/playlists', function(req, res) {
  var state = generateRandomString(16);
  res.cookie(stateKey, state);
  // your application requests authorization
  var scope = 'playlist-read-private';
  res.redirect('' +
      access_token: token,
      token_type: 'Bearer',
      response_type: 'code',
      client_id: client_id,
      scope: scope,
      redirect_uri: redirect_uri,
      state: state

First, you visiting 'http://localhost:8888/login` for authentification, then, you going to 'http://localhost:8888/playlists' for playlists.

Upvotes: 2

Related Questions