Obtain an access token
POST/oauth/token
This endpoint is used to obtain access token using client credentials grant only, for machine-to-machine (M2M) authentication.
It does not support user-based grants. For user authentication, obtain tokens from one DataWollet's user-based Identity Providers (IDPs). Bearer tokens from these IDPs are also accepted by this API.
This endpoint will accept client credentials using three different formats for convenience:
- HTTP Basic Auth: Authorization: Basic base64(client_id:client_secret)
- Form-encoded body: client_id and client_secret in application/x-www-form-urlencoded payload
- JSON body: client_id and client_secret in application/json payload
Request
Responses
- 200
- 400
- 401
- 500
Access token issued successfully
Bad Request - Invalid grant_type or missing credentials
Unauthorized - Client authentication failed
Internal Server Error