{{warning}}

Access Tokens

All API calls must be authenticated using API access tokens.

Getting an Access Token

Use a client_id and client_secret to request an access token by invoking the authorization URL. The access_token will remain valid for 24 hours after time of issue.

  $ curl -X POST \
    https://platform.corespring.org/auth/access_token?client_id=<client_id>&client_secret=<client_secret>

Using an Access Token

The access token can be used by passing it in the Authorization header of an API

$ curl -X GET -H "Authorization: Bearer <access_token>" http://platform.corespring.org/api/v1/items

or by passing it in the query string to a request:

$ curl -X GET http://platform.corespring.org/api/v2/items?access_token=<access_token>