Authentication
Authentication with the WISEflow API can be done in two ways: OAuth2 (recommended) and Token. The OAuth2 method is more secure and is the preferred way to authenticate API requests.
OAuth2 (recommended)
To authenticate using OAuth2, you will need to follow these steps:
- Generate client credentials in the [license administration for API Tokens](https://europe.wiseflow.net/c/admin/api-tokens). Store these credentials securely.
- Use the client ID and client secret to request an access token from the WISEflow API.
- Include the access token in the `Authorization` header of your API requests.
Example of obtaining an access token
Endpoint:
POST https://<baseurl>/v1/oauth2/tokenURL Parameters:
-
client_id: Your client ID obtained from the WISEflow API.-
client_secret: Your client secret obtained from the WISEflow API.-
grant_type: Set to `client_credentials`.Request example:
curl -X 'POST' \
https://<baseurl>/v1/oauth2/token \
-H'accept: application/json' \
-H 'Content-Type: application/x-www-form-urlencoded' \
-d'client_id=CLIENT_ID&client_secret=CLIENT_SECRET&grant_type=client_credentials'
Response example:
{
"access_token": "ACCESS_TOKEN",
"expires_in": 3599,
"scope": "",
"token_type": "bearer"
}
Example of using the access token in an API request:
curl -X GET https://<baseurl>/v1/license/info \
-H 'Authorization: Bearer ACCESS_TOKEN'
Token
Alternatively, you can authenticate using a token. This method is less secure and not recommended for production use.
curl -X GET https://<baseurl>/v1/license/info \
-H 'x-api-key: YOUR_ACCESS_TOKEN'