Skip to main content
GET
/
oauth
/
authorize
Authorization Endpoint
curl --request GET \
  --url https://api.headlesscommerce.io/v1/oauth/authorize
"<string>"

Query Parameters

client_id
string
required

OAuth client identifier from /oauth/register

redirect_uri
string<uri>
required

Registered redirect URI

response_type
enum<string>
required

Must be code

Available options:
code
scope
string
default:admin

Space-separated scopes (e.g. products:read orders:write)

state
string

Opaque CSRF token returned in the redirect

code_challenge
string
required

PKCE code challenge (Base64-URL of SHA-256 hash)

code_challenge_method
enum<string>
default:S256
Available options:
S256

Response

HTML login/consent form

The response is of type string.