Authentication
All API methods require an OAuth 2.0 Bearer token to be provided in the Authorization header for each HTTP request. The Bearer token can be obtained from the authentication server using OAuth 2.0 client credentials flow.
The required client ID and client secret can be obtained in SCM. These must be provided to the authentication server to obtain an access token.
You can use the code examples in the Create access token page to generate an access token on your local machine.
If the request is successful, it will contain an access_token field.
Use the value of this field as the Bearer token in the Authorization header of other API calls.
The expires_in parameter in the response states the lifetime of the access token in seconds.
Security is maintained since the access token is generated locally and all API requests using the token are sent directly from your browser.
For more details, see Client Credentials and Making Authenticated Requests.
Updated 30 days ago