Request OAuth2 token

curl --request POST \
  --url https://api.enterprise.sandbox.uphold.com/core/oauth2/token \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data grant_type=client_credentials \
  --data 'scope=users:* users.kyc:read'

{
  "access_token": "eyJhbGciOiJIUzI1NiIsI...",
  "expires_in": 600,
  "scope": "users:* users.kyc:read",
  "token_type": "Bearer"
}

POST

core

oauth2

token

Request OAuth2 token

curl --request POST \
  --url https://api.enterprise.sandbox.uphold.com/core/oauth2/token \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data grant_type=client_credentials \
  --data 'scope=users:* users.kyc:read'

{
  "access_token": "eyJhbGciOiJIUzI1NiIsI...",
  "expires_in": 600,
  "scope": "users:* users.kyc:read",
  "token_type": "Bearer"
}

Headers

Authorization

string

The client ID and secret, separated by a colon and base64-encoded.

Body

application/x-www-form-urlencoded

Client credentials
Refresh token

grant_type

enum<string>

required

Available options:

client_credentials

scope

string

The list of scopes, delimited with spaces.

Response

Token created successfully.

access_token

string

required

The access token string issued.

expires_in

integer

required

The number of seconds until the token expires.

token_type

enum<string>

required

Available options:

Bearer

refresh_token

string

The refresh token string issued (only applicable to certain grant types).

scope

string

The list of scopes, delimited with spaces.

Concepts Introduction

⌘I

Core API

Topper API

Widgets API

Request OAuth2 token

Headers

Body

Response