Generate accessToken

Client Credentials Flow

❗️

Auth URL

The endpoint URL is the same for both PROD and TEST.


Using the client ID and secret that you got in the previous step, you can now post this to https://auth.notabene.id/oauth/token and it will generate the accessToken for you.

{
  "client_id": "6i5E1UElkjjkjsjinpwu86PeeE",
  "client_secret": "qvC99YkO999999999ddfxcnFIwB_AQjal3324Hkmn2T3qCgALA_9VZGtjqo-jB_7O3j",
  "grant_type": "client_credentials",
  "audience": "https://api.notabene.id"
}
ParamenterValue
client_idString
client_secretString
grant_typeclient_credentials
audiencehttps://api.notabene.id (Production) or https://api.notabene.dev (Testing)

The accessToken you receive in the response is valid for 24 hours:

{
    "access_token": "eyJhbGcRiOiJSUzI1NiIsInR5cCI6432IkpXVCIsImtpZCI6IklkYzY4WffTU5NU9xVDZuaTA3SHYzYiJ9.eyJpc3MiOiJodHRwczovL2F1dGgubm90YWJlbmUuaWQvIiwic3ViIjoiNmk1RTFVRVIwWkliZEExMTdhU0FPd0d1ODZQN0E4R0VAY2xpZW50cyIsImF1ZCI6Imh0dHBzOi8vYXBpLm5vdGFiZW5lLmRldiIsImlhdCI6MTY1MjE3MjQxNCwiZXhwIjoxNjUyMjU4ODE0LCJhenAiOiI2aTVFMVVFUjBaSWJkQTExN2FTQU93R3U4NlA3QThHRSIsImd0eSI6ImNsaWVudC1jcmVkZW50aWFscyJ9.IcB3DnElBAnEnW70gfgyDuk6yZD9wf_OQ6spbuO89wiOuSEJVQRfeIxmFz05e3B8B6gFoequZDVoE6eEiS0UOJasU_wTJn5-XL8fJLMWe84T1iMi1Xr62o34ulDbE3uUo48okhfx4YlHiBnLV-KMjBKl5a8K-1NCZqZ38yU4m1dBg5AUnkYRvTZSsYbsybDU5gD62e5jEZp_FuV61aCRatFnITX8DrBBEvKx5HyVgrg-U0UWNTz7yUmtw1Did15PCwbWWpcuwdCC0bXxdXsQnomvsZ1h1s_yrkqzkR6v9ux6k9-TPKskCBDlKOsgKxT_6lpg6OkhVu4-6Pf4wi0spg",
    "expires_in": 86400,
    "token_type": "Bearer"
}

🚧

We recommend refreshing tokens when they expire, not on a daily schedule.


What’s Next

To make most of the other calls, you need a DID: