Authorization
To call GlobaliD's API, you will need to get an access token.
Once you have an authorization
code
(e.g., from a user logging in via a Connect URL), you can exchange it for an access token via authorization code grant with our authorization server.curl --request POST \
--url https://api.global.id/v1/auth/token \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data grant_type=authorization_code \
--data client_id={{client_id}} \
--data client_secret={{client_secret}} \
--data redirect_uri={{redirect_uri}} \
--data code={{code}}
You will get a response with a JSON payload containing an
access_token
.{
"access_token": "...",
"id_token": "...",
"expires_in": 28799,
"scope": "public",
"token_type": "bearer"
}
In some cases (accessing PII), you will need to retrieve an access token for your application using the client credentials grant.
curl --request POST \
--url https://api.global.id/v1/auth/token \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data grant_type=client_credentials \
--data client_id={{client_id}} \
--data client_secret={{client_secret}}
You will get a response with a JSON payload containing an
access_token
.{
"access_token": "...",
"expires_in": 28799,
"scope": "public",
"token_type": "bearer"
}
Once you have an access token, you're ready to start calling our API with the
access_token
as the bearer token.Last modified 1yr ago