OAuth tokens can be generated using the OAuth api endpoints.
For SSO (Single Sign-On) the OAuth endpoints can be connected to SAML or OpenID connect identity providers, please contact us for details at firstname.lastname@example.org.
The OAuth supported flows are:
Authorisation Code grant
Used to obtain a token when a user will log into their account using a browser.
Used when an application service required access to the API
The authorize API allows you to perform a web login to retrieve an authorisation code which can be exchanged for a token.
GET <your domain>/oauth2/authorize
The client id assigned you your tenant
The URL the client should be redirected to once the login has occurred
A CSRF token, a random string that will be returned with the redirect
Returns: The API will return the following redirect response.
HTTP/1.1 302 Found
The state should be checked against the value that was passed in, then the
AUTHORIZATION_CODE extracted and passed to the token API.
The token endpoint can be used to turn an authorization token into an access token. This method can also be used to establish a client credentials grant.
For authorization code grant
for Client Credentials grant
The client id
same redirect url that was used the obtain the authorization token.
the authorization code from the authorize end point
HTTP/1.1 200 OK