Authentication

Authentication overview

Authentication oAuth2 client credentials flow

All our endpoints are authenticated with oAuth2 client credentials flow. It means APIs are application authenticated (server side). You would need to get a client id and secret to obtain a access token using our API /oauth2/token .

Application sends application's credentials to the oAuth2 Authorization Server with the authorization scopes you want to access.
oAuth2 Authorization Server validates application's credentials.
oAuth2 Authorization Server responds with an access token.
Application can use the access token to call an API on behalf of itself.
API responds with requested data.

Each token issued has a life time (see attribute expires_in in the response) and you will have to issue a new token when the life time has expired.

For more details please refers to RFC 6749 .

See API reference there:

oAuth2 API

PreviousAPI URLs NextScopes

Last updated 7 months ago

Was this helpful?