Requests the access token that will be provided each time a call is made to a feature in the API. The request is anonymous and does not require an authorization code. This procedure follows the OAuth 2.0 authorization standard for accessing API features.
URL
{RMUrl}/APIIntegration/token
REQUEST METHOD
POST
FORM CONTENT
client_id (Required): Identifier of the client application. This identifier is generated automatically when the application is registered in the Administration module of Modulo Risk Manager.
client_secret (Required): Secret key for the application. This key is generated automatically when the application is registered in the Administration module of Modulo Risk Manager.
grant_type (Required): For anonymous token requests, this field must contain the following value: "client_credentials".
FORM CONTENT SAMPLE
POST {WSUrl}/APIIntegration/token HTTP/1.1
Host:
<hostname>
Content-Length: 119
Content-Type:
application/x-www-form-urlencoded
client_id=37d96bb17f5143169e543cf1579586e3&client_secret=1b4916ce4491419590972130c4735cad&grant_type=client_credentials
SUCCESS RESPONSE
access_token: Access token provided by Modulo Risk Manager.
token_type: Type of access token provided by Modulo Risk Manager. The only type currently supported is "bearer".
expires_in: Expiration time in seconds of the access token provided by Modulo Risk Manager.
scope: Not used by Modulo Risk Manager. Maintained for compatibility with the OAuth 2.0 standard.
SUCCESS RESPONSE EXAMPLE
A JSON object with information on the token that will be used to execute the features the application was authorized to access:
{
"access_token" : "949E24A904D3AD2C83C6F6C62F82C10A3B2E1870",
"token_type" : "bearer",
"expires_in" : "86400",
"scope" : ""
}