Authenticate with client credentials
POST/auth/token
This endpoint is used to obtain a bearer token for authenticating subsequent requests to the API. The "client_id" and "client_secret" are credentials that uniquely identify the client making the request. The grant_type should always be "client_credentials", and the scope should include "openid" to indicate the use of OpenID Connect for authentication.
Request
- application/json
Body
required
Params and values to authenticate
client_id stringrequired
client_secret stringrequired
grant_type stringrequired
scope string
Responses
- 200
- 400
- 401
- 404
Successful operation
- application/json
- Schema
- Example (from schema)
Schema
access_token string
expires_in string
scope string
token_type string
{
"access_token": "eyJhbG...",
"expires_in": "600",
"scope": "openid accountId username roles permissions",
"token_type": "Bearer"
}
Invalid credentials supplied
Unauthorized
Credentials not found
Loading...