VOP OAuth Authentication
POST /auth/realms/provider/protocol/openid-connect/token
Get access_token using openid-connect token endpoint using client credentials grant flow. All APIs will require access_token
Request Headers
| Attribute | Type | Condition | Description |
|---|---|---|---|
| Authorization | String | Mandatory | Basic Authentication with Base64 encoded client_id and client_secret |
| Content-Type | String | Mandatory | value = application/x-www-form-urlencoded |
Response Codes
| Status Code | Description |
|---|---|
| 200 | OK |
| 400 | Bad Request |
| 401 | Unauthorized |
| 403 | Forbidden |
| 404 | Not Found |
| 405 | Method Not Allowed |
| 406 | Not Acceptable |
| 415 | Unsupported Media Type |
| 429 | Too Many Requests |
| 500 | Internal Server Error |
Example
-
Request
POST /auth/realms/provider/protocol/openid-connect/token Host: *.banfico.net Authorization: Basic Y29wLWNsaWVudC1pZDpjb3AtY2xpZW50LXNlY3JldA== content-type: application/x-www-form-urlencoded grant_type=client_credentials
-
Response
HTTP/1.x 200 OK Date: Wed, 20 May 2019 11:09:55 GMT Content-Type: application/json { "access_token": "eyJhbGciOiJSUzI1NiIsInR5cCIgOiAiSldUIiwia2lkIiA6ICJ1VXhOb2Q0TWlEY0ZrdXhmQVFzaGZUYUREOVhTZnJCaDdLblRrOTdyNlNjIn0.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.dMSwkA3Poi4KXSDCpsvup-qRg8GksHSy4sV_KrjTHaCbS-0TuE6upLsbP1x5en9KXdl42zz06KmQNkREdwZAv79r3rPtYAhK_1rMgV8KRoVxy3ijWEB99i7-MraAHPeHiv2yG8jqewegyEmJf_0D4okHUfkNvdyQXqD8ks7_kl8iH1tSDwlr1iv-oYQMCDsunDaOiVgRYC4sjYwOZtenOS16o3lZsu7g-t1EW_zyzzY-ei0ybNMt32OjPKVHo1Z--i0He9pKYnvxJawXLeOxPbhlt2J1-xIRMnjiLPZIRfdklNJC69ap7G4IiBzOGBKkBKy5HP4fGYHE7TWVbyUISg", "expires_in": 300, "refresh_expires_in": 0, "refresh_token": "eyJhbGciOiJIUzI1NiIsInR5cCIgOiAiSldUIiwia2lkIiA6ICJhZDg2Mjk4Mi0yOWIwLTQ5ZTAtYjUxMC0xOGU2OWE5YzI5M2YifQ.eyJpYXQiOjE2MjcwMzUxMTUsImp0aSI6IjdhMzA3ZDJiLWQ4YTItNDM3Mi1iNjdhLWU5YjZjMDcwMjE3YyIsImlzcyI6Imh0dHBzOi8vYXV0aC5iYW5rYS5iYW5maWNvLm5ldC9hdXRoL3JlYWxtcy9wcm92aWRlciIsImF1ZCI6Imh0dHBzOi8vYXV0aC5iYW5rYS5iYW5maWNvLm5ldC9hdXRoL3JlYWxtcy9wcm92aWRlciIsInN1YiI6ImI3NjM5OTI4LTFiNmItNDhiYS05YTJmLWIyYjcwOTI2NWQ4NCIsInR5cCI6Ik9mZmxpbmUiLCJhenAiOiJvdXRib3VuZDAxIiwic2Vzc2lvbl9zdGF0ZSI6ImYwOWEwMWE2LWMzMzUtNDIyYS1hYTNmLWMyZjk1NmI3NjIzZiIsInNjb3BlIjoicHJvZmlsZSBvZmZsaW5lX2FjY2VzcyBlbWFpbCJ9.2lK3zIyL5IjoL_ZkHznhGuifZByaQ5Xh3GAnoltbSNY", "token_type": "Bearer", "not-before-policy": 0, "session_state": "f09a01a6-c335-422a-aa3f-c2f956b7623f", "scope": "profile offline_access email" }