Obtain access token
OAuth 2.0 token endpoint supporting client credentials and refresh token grant types.
Use this endpoint to obtain an access token that can be used to authenticate requests to other API endpoints. The token should be included in the Authorization header as a Bearer token.
Supported Content Types:
application/x-www-form-urlencoded(standard OAuth 2.0)application/json
Grant Types:
- client_credentials: Use client ID and secret to obtain an access token
- refresh_token: Use a refresh token to obtain a new access token
Token request
client_idstring
Client identifier issued during registration
Example
"your_client_id"client_secretstring
Client secret issued during registration
Example
"your_client_secret"grant_typestring
OAuth 2.0 grant type (must be 'client_credentials')
Value in
"client_credentials"Example
"client_credentials"scope?string
Space-separated list of requested scopes (optional)
Example
"example example:readonly"Response Body
application/json
application/json
application/json
curl -X POST "https://breb-participant.cert.monoban.co/api/v1/oauth/token" \ -H "Content-Type: application/json" \ -d '{ "client_id": "your_client_id", "client_secret": "your_client_secret", "grant_type": "client_credentials", "scope": "example example:readonly" }'{
"access_token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...",
"expires_in": 3600,
"refresh_token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9refresh...",
"scope": "example example:readonly",
"token_type": "Bearer"
}{
"error": "unsupported_grant_type",
"error_description": "The grant_type must be 'client_credentials' or 'refresh_token'"
}{
"error": "invalid_client",
"error_description": "Client authentication failed"
}