Authorization
Authorization
Section titled “Authorization”The Trust2Connect API uses OAuth 2.0 Client Credentials Grant as its authentication method. Every request to the API must include a valid access token obtained via this flow.
How Authorization Works
Section titled “How Authorization Works”The authorization process consists of two main steps:
-
Obtain an Access Token:
Your application requests an access token from the authorization server using its unique client credentials (Client ID and Client Secret). -
Use the Access Token:
Once obtained, include the access token in theAuthorizationheader of every API request.
Authentication Details
Section titled “Authentication Details”-
Authentication Type: OAuth 2.0 (Client Credentials Grant)
-
Token Generation: Use your client credentials (Client ID and Client Secret) to generate the token.
-
Token Usage: Pass the token in the
Authorizationheader for all API requests. -
Token Expiry: Tokens expire after a set period and must be regenerated as needed.
Token Details
Section titled “Token Details”-
Token Name:
t2c-access-token -
Header Prefix:
Bearer -
Token Availability: The token is issued only to authenticated clients.
Authorization Header Format
Section titled “Authorization Header Format”Include the access token in the request header as follows:
Authorization: Bearer {t2c-access-token}