Token API

The token API is for requesting access tokens issued by our IoT identity provider.

Token Endpoint

Use this endpoint to request a new access token by authenticating with a private key JWT.

For additional details about the JWT visit our developer guide.

Request a token

POST https://iot-idp.demo.apps.iothentix.io/as/token

Request an access token by authenticating with a signed JWT.

Headers

Name	Type	Description
Authorization*		Private key JWT

Request Body

Name	Type	Description
client_id*	String	Client ID of the registered OAuth client.
scope	String	Request a scope to be present in the access token.

200: OK Successful token request.

{
    "access_token": "<ACCESS_TOKEN>",
    "expires_in": 3599,
    "scope": "<REQUESTED_SOCPE>",
    "token_type": "bearer"
}

401: Unauthorized The private key JWT was missing.

{
    "error": {
        "code": 401,
        "status": "Unauthorized",
        "request": "<REQUEST_ID>",
        "message": "The request could not be authorized"
    }
}

400: Bad Request The request format was incorrect.

{
    "error": {
        "code": 400,
        "status": "Bad Request",
        "request": "<REQUEST_ID>",
        "message": "Bad Request"
    }
}

500: Internal Server Error Internal error in the IdP infrastructure.

{
    "error": 
    {
        "code": 500,
        "status": "Internal Server Error",
        "request": "<REQUEST_ID>",
        "message": "An internal server error occurred, please contact the system administrator"
    }
}

429: Too Many Requests To many requests within the rate limit period.

{
    "error": 
    {
        "code": 429,
        "message": "Slow down",
        "status": "Too Many Requests"
    }
}

404: Not Found The resource could not be found or the wrong HTTP method was used.

{
    "error": {
        "code": 404,
        "status": "Not Found",
        "request": "<REQUEST_ID>",
        "message": "The requested resource could not be found"
    }
}

403: Forbidden The private key JWT was invalid.

{
    "error": {
        "code": 403,
        "status": "Forbbiden",
        "request": "<REQUEST_ID>",
        "message": "Forbidden"
    }
}

Renew Token Endpoint

Use this endpoint to renew the access token based on a previously issued access token.

Refresh the token

POST https://iot-idp.demo.apps.iothentix.io/as/renew/token

Request a new access token by authenticating with a previously issued access token.

Headers

Name	Type	Description
Authorisation*	String	Access token issued by the IoT provider

Request Body

Name	Type	Description
client_id*	String

200: OK Successful token renew request .

{
    "access_token": "<ACCESS_TOKEN>",
    "expires_in": 3599,
    "scope": "REQUESTED_SOCPE",
    "token_type": "bearer"
}

401: Unauthorized The previously issued access token is invalid or missing.

{
    "error": 
    {
        "code": 401,
        "status": "Unauthorized",
        "request": "<REQUEST_ID>",
        "message": "The request could not be authorized"
    }
}

500: Internal Server Error Internal error in the IdP infrastructure.

{
    "error": 
    {
        "code": 500,
        "status": "Internal Server Error",
        "request": "<REQUEST_ID>",
        "message": "An internal server error occurred, please contact the system administrator"
    }
}

403: Forbidden The previously issued access token is not allowed to renew the access token.

{{
    "error": {
        "code": 403,
        "status": "Forbbiden",
        "request": "<REQUEST_ID>",
        "message": "Forbidden"
    }
}

429: Too Many Requests To many requests within the rate limit period.

{
    "error": {
        "code": 429,
        "message": "Slow down",
        "status": "Too Many Requests"
    }
}

404: Not Found The resource could not be found or the wrong HTTP method was used.

{
    "error": {
        "code": 404,
        "status": "Not Found",
        "request": "<REQUEST_ID>",
        "message": "The requested resource could not be found"
    }
}