Skip to main content

Get Your Token

To get an access token and to be able to use the API, you need to make a request to the token endpoint with a Basic Auth header using your base64 encoded client ID and secret.
Remember to replace the subdomain if you’re in a sandbox environment.

Encode Your Credentials

You will probably need to use a base64 encoder to get the encoded string. For example, DevToys is a useful tool: Base64 Encoder Example The format to encode is: client_id:client_secret

Request an Access Token

curl -X POST \
  'https://app.podero.com/oauth2/token/' \
  -H 'Authorization: Basic base64_encode(client_id:client_secret)' \
  -H 'Cache-Control: no-cache' \
  -H 'Content-Type: application/json' \
  -d '{
    "grant_type": "client_credentials"
  }'

Response

You will receive a response containing an access token, as well as the expiration time: 
{
  "access_token": "PaZDOD5UwzbGOFsQr34LQ7JUYOj3yK",
  "expires_in": 36000,
  "token_type": "Bearer",
  "scope": "read write"
}
access_token
string
Your API access token. Use this in the Authorization header for subsequent requests.
expires_in
integer
Token expiration time in seconds (typically 36000 = 10 hours).
token_type
string
The type of token, always “Bearer”.
scope
string
The scopes granted to this token.
Make sure you store these credentials securely and refresh the token in a timely manner to avoid losing access to the API.

Using the Token

From now on, include the access token in a “Bearer” authorization header for all API requests: 
Authorization: Bearer {auth_token}

Next Step

Create User

Create your first end-user account