Skip to main content
POST
/
oauth
/
token
Token Endpoint
curl --request POST \
  --url https://api.headlesscommerce.io/v1/oauth/token \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data grant_type=authorization_code \
  --data 'client_id=<string>' \
  --data 'code=<string>' \
  --data 'redirect_uri=<string>' \
  --data 'code_verifier=<string>' \
  --data 'refresh_token=<string>'
{
  "access_token": "<string>",
  "token_type": "Bearer",
  "expires_in": 3600,
  "refresh_token": "<string>",
  "scope": "<string>"
}

Body

application/x-www-form-urlencoded
grant_type
enum<string>
required
Available options:
authorization_code,
refresh_token
client_id
string
required
code
string

Authorization code (for authorization_code grant)

redirect_uri
string<uri>

Must match the URI used in /oauth/authorize

code_verifier
string

PKCE code verifier (for authorization_code grant)

refresh_token
string

Refresh token (for refresh_token grant)

Response

Token response

access_token
string
token_type
string
Example:

"Bearer"

expires_in
integer
Example:

3600

refresh_token
string
scope
string