Token Endpoint

POST {{url}}/oauth/token


  • name: grant_type content: "REQUIRED. Supported the following values: authorization_code, password."
  • name: code content: REQUIRED. OAuth 2.0 Authorization Code.
  • name: client_id content: REQUIRED. Client Identifier provided by PRIVO administrator.
  • name: client_secret content: OPTIONAL (dependent on request type). Client Secret provided by PRIVO administrator.
  • name: redirect_uri content: REQUIRED. The client Redirect URI to which the response will be sent. This URI must exactly match one of the pre-registered, white-listed Redirect URI values. content_markdown: |-

Returns the requested token. Token type depends on the grant type and scope(s) requested.

Token Endpoint:

    POST {{url}}/oauth/token
    Authorization: Bearer {access_token}

Sample Access Token Request:


Sample JSON Response:

  "access_token": "eyJhbGciOiJSUzIi.......3gZthv7Y",
  "token_type": "Bearer",
  "expires_in": 599,
  "scope": "PRIVOLOCK TRUST"