Versions Compared

Old Version 9

changes.mady.by.user Tom Pick

Saved on

compared with

New Version Current

changes.mady.by.user Tom Pick

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Parameter

Type

Optionality

Description

Example

grant_type

Form parameter

Required

Must be "client_credentials"

client_credentials

Authorization

HTTP header

Required

This is a standard HTTP basic authorization header.

The value should be a Base64 encoding of your client ID and client secret, concatenated together with a colon (:) separator, and prepended with "Basic ".

For example, if your client ID was example_client_id and your client secret was example_secret then your header value should be:

Basic ZXhhbXBsZV9jbGllbnRfaWQ6ZXhhbXBsZV9jbGllbnRfc2VjcmV0

Basic ZXhhbXBsZV9jbGllbnRfaWQ6ZXhhbXBsZV9jbGllbnRfc2VjcmV0

Content-Type

HTTP header

Required

Must be "application/x-www-form-urlencoded"

application/x-www-form-urlencoded

...

Parameter

Type

Optionality

Description

Example

access_token

JSON parameter

Required

This is the access token that can subsequently be used to authenticate against the relevant API, and gain access to the functionality

eyJhbGxxxx

token_type

JSON parameter

Required

This is always "bearer" (case may vary)

bearer

expires_in

JSON parameter

Required

This indicates the number of seconds for which the access_token is valid

600

scope

JSON parameter

Required

Currently, scopes are not supported. As such, this will always be "none".

none

jti

JSON parameter

Required

A unique identifier for this token.

24eb74c3-ad03-4c4f-a93d-786cf47b6c2f

...

Other parameters maybe returned (e.g. scope, jti) - you can safely ignore them.

Examples

Facade endpoint

Code Block
HTTP/1.1 200 OK

{
     "access_token": "abcdef",

    "token_type": "bearer",
     "expires_in":600 3599,

    "scope":"none",

 "4e4a5165-af36-40ec-877a-0333cde24490-all",
    "client_name": "Your client name",
    "jti":"24eb74c3-ad03-4c4f-a93d-786cf47b6c2f"
}

Customer endpoint

Code Block
HTTP/1.1 200 OK

{
    "access_token": "abcdef",
    "expires_in": 300,
    "refresh_expires_in": 0,
    "token_type": "Bearer",
    "not-before-policy": 0,
    "scope": "email profile"
}

Error handling

If the authentication fails, then an error will be returned to you.

...

Code Block
HTTP/1.1 401 Unauthorized

{
     "error":"unauthorized"
     "error_description":"Full authentication is required to access this resource"

}

PKB customer sites:deploy |developer |information governance |procurement |manual

...