Token API

The token API is for requesting access tokens issued by our IoT identity provider.

Token Endpoint

Use this endpoint to request a new access token by authenticating with a private key JWT.

For additional details about the JWT visit our developer guide.

Request a token

POST https://iot-idp.demo.apps.iothentix.io/as/token

Request an access token by authenticating with a signed JWT.

Headers

Name	Type	Description
Authorization*		Private key JWT

Request Body

Name	Type	Description
client_id*	String	Client ID of the registered OAuth client.
scope	String	Request a scope to be present in the access token.

200: OK Successful token request.

{
    "access_token": "<ACCESS_TOKEN>",
    "expires_in": 3599,
    "scope": "<REQUESTED_SOCPE>",
    "token_type": "bearer"
}

401: Unauthorized The private key JWT was missing.

400: Bad Request The request format was incorrect.

500: Internal Server Error Internal error in the IdP infrastructure.

429: Too Many Requests To many requests within the rate limit period.

404: Not Found The resource could not be found or the wrong HTTP method was used.

403: Forbidden The private key JWT was invalid.

Renew Token Endpoint

Use this endpoint to renew the access token based on a previously issued access token.

Refresh the token

POST https://iot-idp.demo.apps.iothentix.io/as/renew/token

Request a new access token by authenticating with a previously issued access token.

Headers

Name	Type	Description
Authorisation*	String	Access token issued by the IoT provider

Request Body

Name	Type	Description
client_id*	String

200: OK Successful token renew request .

{
    "access_token": "<ACCESS_TOKEN>",
    "expires_in": 3599,
    "scope": "REQUESTED_SOCPE",
    "token_type": "bearer"
}

401: Unauthorized The previously issued access token is invalid or missing.

500: Internal Server Error Internal error in the IdP infrastructure.

403: Forbidden The previously issued access token is not allowed to renew the access token.

429: Too Many Requests To many requests within the rate limit period.

404: Not Found The resource could not be found or the wrong HTTP method was used.