Authorization

Obtain client access tokens for API authorization when needed (see Authentication). Click Try it from the API explorer below to generate access tokens directly from the docs. You can then use these tokens to run API requests in this API reference.

Get client access token

Retrieve an access token to authorize your API request. Note: this endpoint is the same as cis/oidc/token.

Request

Request Body schema: application/x-www-form-urlencoded

client_id

required

string

Client identifier

client_secret

required

string

Client secret

grant_type

required

string

Should be set to client_credentials

Value: "client_credentials"

resource

string

URI of the resource the request is attempting to access, which is reflected in the audience (aud claim) of the access token. This must be configured as a resource for the application. If a resource is not specified, the token targets at Identity Management and Authentication services.

Enum:	Description
https://verify.identity.security	Generates a token for Identity Verification services.
https://risk.identity.security	Generates a token for Detection and Response services.

Responses

200

400

500

post/oidc/token

Request samples

application/x-www-form-urlencoded

client_id=string&client_secret=string&grant_type=client_credentials&resource=https%3A%2F%2Fverify.identity.security

Response samples

application/json

{"access_token": "string",
"token_type": "string",
"expires_in": 3600,
"scope": "string"
}