Skip to main content
POST
/
auth
/
token
/auth/token
curl --request POST \
  --url http://localhost:8080/auth/token \
  --header 'Authorization: Basic <encoded-value>' \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data 'grant_type=<string>' \
  --data scope= \
  --data 'client_id=<string>' \
  --data 'client_secret=<string>'
{
  "access_token": "52ea3d1b4f9a53fffb67...",
  "token_type": "bearer",
  "expires_in": 3600
}
curl -i -X POST \
  -u <username>:<password> \
  http://localhost:8080/auth/token \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -H 'moneykit-version: 2023-02-18' \
  -d grant_type=string \
  -d scope= \
  -d client_id=string \
  -d client_secret=string



{
"access_token": "52ea3d1b4f9a53fffb67...",
"token_type": "bearer",
"expires_in": 3600
}

Authorizations

Authorization
string
header
required

Basic authentication header of the form Basic <encoded-value>, where <encoded-value> is the base64-encoded string username:password.

Headers

moneykit-version
string
default:2023-02-18

Body

application/x-www-form-urlencoded
grant_type
string

Token grant type. Only client_credentials supported.

scope
string
default:""

Actions to be allowed for this token, given as one or more strings separated by spaces. If omitted, all actions allowed for your application will be granted to this token.

client_id
string

Your application's MoneyKit client ID.

client_secret
string

Your application's MoneyKit client secret.

Response

Generated access token.

MoneyKit API access token.

access_token
string
required

Short-lived access token.

Example:

"52ea3d1b4f9a53fffb67..."

token_type
string
required

Always "bearer".

Example:

"bearer"

expires_in
integer
required

How long until access_token expires in seconds.

Example:

3600