Get Access Token

curl --request POST \
  --url https://sandbox-b2b.ripio.com/oauth2/token/ \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: multipart/form-data' \
  --form grant_type=client_credentials \
  --form client_id=DzZTzx2iam7jdaCZA85VRpKut10qDy6SGDsTYHTJ \
  --form client_secret=UcIKFqnh1EHg1nC2eL6dN9NTbFjXUuXn0J3QBxPUfyXKKXLfiVxCN19UNucd9W7fiKbUCs5cIOC6GvnKAHuTEPTCVKQSaAf8wP0KIIPR7qkl0rLpFq3oJTvUFslg6D9W

{
  "access_token": "gAgXJcRMnGP6TG9vFcepgP6OMtProD",
  "expires_in": 36000,
  "token_type": "Bearer",
  "scope": "read write"
}

Authentication

Get Access Token

Every call to the API has to be authenticated with an OAuth2 Token. In order to request this token, you will need to have sandbox or production API Keys (client_id and client_secret) that will allow to negotiate an ephemeral access token.

To generate the access token, you should call this endpoint providing the header Authorization with the following schema: Basic CREDENTIAL where CREDENTIAL should be specified as a string with the formatclient_id:client_secret encoded in Base64.

POST

oauth2

token

Get Access Token

curl --request POST \
  --url https://sandbox-b2b.ripio.com/oauth2/token/ \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: multipart/form-data' \
  --form grant_type=client_credentials \
  --form client_id=DzZTzx2iam7jdaCZA85VRpKut10qDy6SGDsTYHTJ \
  --form client_secret=UcIKFqnh1EHg1nC2eL6dN9NTbFjXUuXn0J3QBxPUfyXKKXLfiVxCN19UNucd9W7fiKbUCs5cIOC6GvnKAHuTEPTCVKQSaAf8wP0KIIPR7qkl0rLpFq3oJTvUFslg6D9W

{
  "access_token": "gAgXJcRMnGP6TG9vFcepgP6OMtProD",
  "expires_in": 36000,
  "token_type": "Bearer",
  "scope": "read write"
}

Authorizations

Authorization

string

header

required

B2B’s White Label API uses OAuth2. Currently there is only one supported authentication flow:

clientCredentials allows you to access your own B2B account (First-Party Integration) and performs transactions against the public API. This oauth2 flow is well suited for this API, as it allows machine-to-machine communication.

Every call to the API has to be authenticated with an OAuth2 Token. In order to request this token, you will need to have sandbox or production API Keys (client id and client secret) that will be needed to generate a credential in order to negotiate an ephemeral access token.

Every request must be accompianed by an Authorization header with a value that follows the following schema: Bearer ACCESS_TOKEN

Headers

Authorization

string

Basic CREDENTIAL

Body

multipart/form-data

grant_type

string

required

Always as client_credentials

Example:

"client_credentials"

client_id

string

required

Production or Sandbox Client ID

client_secret

string

required

Production or Sandbox Client Secret

Response

Successful response

access_token

string

required

Access token used to authenticate requests to the API.

expires_in

number

required

Number of seconds the access token will be valid for.

token_type

string

required

Type of token used to authenticate requests to the API.

scope

string

required

Scope of the access token.

Buy, Hold & Sell Widget List Account Reusable Quotes

⌘I

Overview

Widget

API Reference

Get Access Token

Authorizations

Headers

Body

Response