Note: If you are unsure which Grant Type / method of requesting Access Token you need to use, kindly go over the 'OAuth Grant Types' section first.
If you don't have your OAuth Client details, kindly contact us as described below.
To get your OAuth Client details, kindly contact us with the following details about your application:
| Detail | Explanation |
|---|---|
| Website: | Website for general information about your product / service, eg: https://example.com |
| Redirect URL: | Endpoint where your application / service will handle OAuth responses sent by Passolution Authorization Server eg: https://example.com/handle-oauth-authorization |
| Grant Type: | The Grant Type your application needs to use, check 'OAuth Grant Types' section for details. eg: Authorization Code |
We will provide you the following OAuth details after setting up OAuth Client for your application:
| Detail | Explanation |
|---|---|
| Client ID: | A unique ID assigned to your OAuth Client application to be used in OAuth protocol. |
| Client Secret: | A shared secret value that allows Authorization Server (web.passolution.eu) to authenticate your OAuth Client application during OAuth protocol data exchange. It should not be stored outside of your secure servers |
Here are some endpoints on our OAuth Authorization Server that your application will need to interact with:
| OAuth Endpoint | URL |
|---|---|
| Authorization URL: | https://web.passolution.eu/oauth/authorize |
| Token URL: | https://web.passolution.eu/oauth/token |
| Token Refresh URL: | https://web.passolution.eu/oauth/token |
We will now go over the OAuth Grant Types (method of requesting Access Token) and discuss how they can be implemented in your application in the next few pages.