In the SMAPI docs, it says:
"If you are building your own tool or service to integrate with the API, you will need to implement OAuth 2.0 integration with Login with Amazon to request your users’ authorization and retrieve access tokens used to call the Skill Management API. See the Developer Guide for Login With Amazon. The API requires using the authorization code grant type."
To use the Dialogflow API, all you have to provide is the developer access token from your Agent. To use SMAPI, each request must have an Authorization header whose value should be the access token retrieved from Login with Amazon.
I have a basic question about applying the instructions in the LWA Dev Guide to get this access token. It is all set up to tell you how to use LWA with a website. I'm not setting up SMAPI calls from a website. I just want to have a Lambda function that gets triggered to launch nodejs code to update a Skill. How do I apply those instructions in that context? Per above, the Authorization Code Grant section on p25 of the guide is applicable. Is there a way to just get the auth code that I can use to get an access_token directly, vs via a redirect_uri? In other words I'm wondering if you can use the LWA framework and therefore SMAPI outside of websites.
Or is SMAPI really only set up to be used with a website, and we're just supposed to use the CLI for use cases like I'm describing?