Auth response

All the authentication requests, despite the grant type, have the same response.

Example of response:

{
    "access_token": "MjAxNTJkNzllYzU5YjLhOEc5M2GkZDBmM2JiYzNmZWZmNzAwYTFhNjZkZThlNDgyNDA2MDJiNmEwODdlODVjOA",
    "expires_in": 3600,
    "token_type": "bearer",
    "scope": "user, password"
}

Using token

The token returned in the authentication response should be used with all subsequent requests, using the authorization HTTP header:

'Authorization: Bearer {{access_token}}`

🚧

Token expiration

Tokens expire, so you must check the status code for all responses.
If the response has a 401 status code you must request a new access token via another authentication process.

The default expiration is 3600 seconds and is always shown in response.

expires_in": 3600,