Jump to content

Client Credentials Flow

The Client Credentials flow is used in server-to-server authentication. Since this flow does not include authorization, only endpoints that do not access user information can be accessed.

The following diagram shows how the Client Credentials Flow works:


curl --request POST \
     --url https://sandbox.treddy.se/oauth2/token \
     -u '{client_id}:{client_secret}' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     -d 'grant_type=client_credentials'
curl --request GET \
     --url https://sandbox.treddy.se/deals/v1/deals \
     --header 'accept: application/json' \
     --header 'Authorization: Bearer {token}'