Api Access

Api Access Information

The Auth Armor Api uses Bearer tokens for authorization.

To obtain a Bearer token, you must make a request to the Auth Armor OAuth2 server using the client_credentials oauth2 grant.

• Auth Armor Token endpoint: https://login.autharmor.com/connect/token

Required inputs:

• client_id
• client_secret

Optional inputs:

• scopes
  • aarmor.api.generate_invite_code
  • aarmor.api.request_auth

Where to get required inputs:

Both the client_id and client_secret are obtained via the developer dashboard located at https://dashboard.autharmor.com

Login then select or create a project. Navigate to the Api Access section and create a new api client. when you create a client, you are asked to give the client permissions, or scopes; select one more more scopes here. Please see the scopes section for more info. After client creation, you will be presented with a client_id and client_secret. Copy these values into your request.

Scopes

Scopes are permissions that the token will be allowed to perform. There are two scopes allowed. They are aarmor.api.generate_invite_code and aarmor.api.request_auth. When you create an api access client, you will be asked to select what scopes the client is allowed to perform. When requesting a token using that client, you can optionally leave the scope field blank. If left blank, all of the scopes that are assigned to the client will be applied to the token. If you specify the scopes in the token request, the token will then only have the scopes that were requested.