Apiture Developers Apiture Developers

Menu

  • Explore API Banking
    • API Digital Banking
    • Embedded Banking
    • Contact Us
  • Developers
    • Quick Start Guide
    • API Reference
Apiture Developers Apiture Developers
Apiture Developers

Menu

  • Explore API Banking
    • API Digital Banking
    • Embedded Banking
    • Contact Us
  • Developers
    • Quick Start Guide
    • API Reference

API Documentation

  • folder icon closed folder iconGetting Started
  • folder icon closed folder iconConcepts
    • API Keys
    • Authorization and Authentication
    • Access Tokens
    • Resources and URI Structure
    • Resource Collections
    • Resource Sets
    • Error Responses
    • Error Types
    • Markdown
    • Collection Pagination
    • Collection Filtering
    • Entitlements
  • folder icon closed folder iconGuides
    • Authenticate Users in your App using OpenID Connect
    • Listing the Balances for Accounts
    • Using Pagination
  • folder icon closed folder iconAPI Reference
  • folder icon closed folder iconRelease Notes

API Documentation

  • folder icon closed folder iconGetting Started
  • folder icon closed folder iconConcepts
    • API Keys
    • Authorization and Authentication
    • Access Tokens
    • Resources and URI Structure
    • Resource Collections
    • Resource Sets
    • Error Responses
    • Error Types
    • Markdown
    • Collection Pagination
    • Collection Filtering
    • Entitlements
  • folder icon closed folder iconGuides
    • Authenticate Users in your App using OpenID Connect
    • Listing the Balances for Accounts
    • Using Pagination
  • folder icon closed folder iconAPI Reference
  • folder icon closed folder iconRelease Notes

Access Tokens

Access tokens are strings that represent a user’s authentication and authorization, also known as a bearer token.

As part of authentication, the authorization server returns an access token to the client application. This access token is unique to that authenticated user and the requesting client application. The client application must keep the access token secure and not leak the access token to other users or other applications.

The API documentation includes an accessToken security requirement on the operations which require an access token. This security requirement means that client applications should pass the access token when invoking the operation.

Refreshing Expired Tokens

A client application can refresh an access token that has expired or is about to expire. When the access token is returned during authentication, a refresh token and an expiration time are also returned. The client application can preemptively acquire a new access token before the old token expires.

Implementation

For help implementing Authentication and Authorization for your project, view our tutorial.

How can we help?

Get support for your issues.

Explore API Banking

  • API Digital Banking
  • Embedded Banking
  • Contact Us

Developers

  • Get Started Guide
  • API Reference

More

  • Apiture.com

Privacy Policy

© 2022 Apiture Inc.   |   All Rights Reserved