External APIs
Generate Access Token
Generate access tokens for external API authentication using client credentials
POST
Generate Access Token
Generate access tokens for external API authentication using basic authentication with client credentials.Authentication
This endpoint uses basic authentication with your client credentials.Basic authentication header with base64-encoded client credentials. Format:
Basic base64(client_id:secret_key)Request Parameters
No request body parameters are required for this endpoint.Response Fields
Token data object containing authentication information.
Human-readable message describing the result of the operation.
Operation status. Always “success” for successful token generation.
Error Responses
401 Unauthorized
401 Unauthorized
429 Too Many Requests
429 Too Many Requests
Usage Examples
Rate Limits
- Rate Limit: 10 requests per minute per client
- Burst Limit: 20 requests per 5-minute window
Security Considerations
Credential Security
Credential Security
- Store client credentials in environment variables or secure key management systems
- Use different credentials for different environments (development, staging, production)
- Rotate credentials regularly for enhanced security
- Never log or expose credentials in error messages or logs
Token Security
Token Security
- Store access tokens securely and never expose them in client-side code
- Implement automatic token refresh before expiration
- Use HTTPS for all API requests
- Monitor token usage and implement proper error handling
Best Practices
Implement Token Caching
Cache access tokens in memory or secure storage to avoid unnecessary token generation requests.
Handle Token Expiration
Implement automatic token refresh before expiration to ensure uninterrupted API access.
Monitor Rate Limits
Monitor rate limit headers and implement proper backoff strategies when limits are reached.