OAuth2

This endpoint is used to create access and refresh tokens.

The access token is used as a bearer token to authenticate requests to Bud endpoints;
the refresh token is used to generate a new access token without the need to supply your client credentials again.

The access token usually expires after the expires_in time (in seconds) has elapsed.
However this is not guaranteed, so it is recomended to integrate such as to handle the 401 response code and refresh the token when it this response code is seen.

Refresh tokens typically expire after 24 hours, but this is not guaranteed.

🚧 Recognise the sensitive nature of access tokens. Implement appropriate security measures to prevent unauthorized access.

Related Guides:

Form Data
Headers
string
required
string
required

The API Client Identifier (Service Application Identifier).

string

The authorization header is used to send the client credentials in the form of a base64 encoded string.
The format of the string is client_id:client_secret.

This is only required when retrieving an auth token and not whilst refreshing an auth token.

Example: Basic Y2xpZW50X2lkOmNsaWVudF9zZWNyZXQ=

Responses

Language
Credentials
:
Choose an example:
application/json