Quick tips to remember when authenticating requests
- Add tokens to request headers, i.e.
Authorization: Bearer <token> - Get an initial access/refresh token pair: submit your own access token with a
clientIdandappIdwithtoken_type:"Access".
This is just a signed JWT using your credentials from the dashboard.
- Get a refreshed access token (with a valid refresh token): Simply submit the refresh token as provided in your prior call and if valid, receive a fresh access token
- Get a fresh refresh token: Call the
/tokenendpoint with your access token and you will receive via our response a fresh refresh token, if expiration is within 30 minutes of timeout.
Ask more within this topic!