Authorization

Obtain client access tokens for API authorization when needed (see Authentication). Click Try it from the API explorer below to generate access tokens directly from the docs. You can then use these tokens to run API requests in this API reference.

Get client access token

Retrieve an access token to authorize your API request. Note: this endpoint is the same as cis/oidc/token.

Request
Request Body schema: application/x-www-form-urlencoded
client_id
required
string

Client identifier

client_secret
required
string

Client secret

grant_type
required
string

Should be set to client_credentials

Value: "client_credentials"
resource
string

URI of the resource the request is attempting to access, which is reflected in the audience (aud claim) of the access token. This must be configured as a resource for the application. If a resource is not specified, the token targets at Identity Management and Authentication services.

Enum: Description
https://verify.identity.security

Generates a token for Identity Verification services.

https://risk.identity.security

Generates a token for Detection and Response services.

Responses
200
400
500
post/oidc/token
Request samples
application/x-www-form-urlencoded
client_id=string&client_secret=string&grant_type=client_credentials&resource=https%3A%2F%2Fverify.identity.security
Response samples
application/json
{
  • "access_token": "string",
  • "token_type": "string",
  • "expires_in": 3600,
  • "scope": "string"
}