/
Integration Guides

Access Tokens

Requesting an Access TokenAnchorIcon

To request an access token you will need to make a request with the createOAuthAccessTokenFromClientCredentials mutation using a client id and client secret as the authorization for your reqeust. These values can be found in the Control Panel.

Once obtaining the client id and secret for your application, base64 encode the value and include it in the authorization header. 

echo -n 'CLIENT_ID:CLIENT_SECRET' | base64
"Authorization": "Basic BASE64_ENCODED(CLIENT_ID:CLIENT_SECRET)"

Access Token ScopesAnchorIcon

When requesting an access token you must pass in the scopes needed to perform the mutations and queries where the access token will be used as the authorization.

  1. Mutation
mutation createOAuthAccessTokenFromClientCredentials(
  $input: CreateOAuthAccessTokenFromClientCredentialsInput!
) {
  createOAuthAccessTokenFromClientCredentials(input: $input) {
    accessToken {
      accessToken
      tokenType
      expiresAt
    }
  }
}
  1. Variables
{
  "input": {
    "scopes": [
      "TRANSACTION_SALE",
      "TRANSACTION_MANAGE_SETTLEMENT"
    ]
  }
}

Using the Access TokenAnchorIcon

The access token will be available in the response of the createOAuthAccessTokenFromClientCredentials mutation.

  1. Response
{
  "data": {
    "createOAuthAccessTokenFromClientCredentials": {
      "accessToken": {
        "accessToken": "access_token$sandbox$abc123",
        "tokenType": "BEARER",
        "expiresAt": "date"
      }
    }
  },
  "extensions": {
    "requestId": "a-uuid-for-the-request"
  }
}

Authorization with an Access TokenAnchorIcon

To authenticate with an access token, take the access token from the response and include it in the authorization header. 

"Authorization": "Bearer ACCESS_TOKEN"

Call the subsequent mutations or queries as normal.

ErrorsAnchorIcon

If the scopes used to generate the access token are not sufficient for the mutation or query being called, an authorization error will be returned.

  1. Response
{
  "extensions": {
    "errorClass": "AUTHENTICATION",
    "errorType": "developer_error"
  },
  "message": "Authentication credentials are invalid."
}

Mutations and the scopes neededAnchorIcon

This is a list of the minimum required scopes for certain mutations.

Note
The required scopes for a mutation may increase or descrease depending on the fields requested in the mutation.
MutationScope
authorizeCreditCardTRANSACTION_SALE
authorizePaymentMethodTRANSACTION_SALE
authorizeVenmoAccountTRANSACTION_SALE
captureTransactionTRANSACTION_MANAGE_SETTLEMENT
chargeCreditCardTRANSACTION_CHARGE
createCustomerCUSTOMER_CREATE
createVenmoPaymentContextPAYMENT_CONTEXT_CREATE
Node.venmoPaymentContextPAYMENT_CONTEXT_FIND
partialCaptureTransactionTRANSACTION_MANAGE_SETTLEMENT
refundTransactionTRANSACTION_REFUND
reverseTransactionTRANSACTION_REVERSE
tokenizeCreditCardSINGLE_USE_PAYMENT_METHOD_CREATE
tokenizeNetworkTokenSINGLE_USE_PAYMENT_METHOD_CREATE
vaultPaymentMethodPAYMENT_METHOD_VAULT

List of all available scopesAnchorIcon

This is a list of the available scopes in the API. Please note that this list is subject to change. 

ADDRESS_CREATE ADDRESS_DELETE ADDRESS_FIND ADDRESS_UPDATE APPLE_PAY_MANAGE_WEB_DOMAINS CLIENT_TOKEN_GENERATE CREDIT_CARD_EXPIRING_BETWEEN CREDIT_CARD_VERIFICATION_SEARCH CUSTOMER_CREATE CUSTOMER_DELETE CUSTOMER_FIND CUSTOMER_SEARCH CUSTOMER_UPDATE DISPUTE_ACCEPT DISPUTE_ACCEPT_FACILITATED DISPUTE_ADD_EVIDENCE DISPUTE_ADD_EVIDENCE_FACILITATED DISPUTE_FINALIZE DISPUTE_FINALIZE_FACILITATED DISPUTE_FIND DISPUTE_FIND_FACILITATED DISPUTE_REMOVE_EVIDENCE DISPUTE_REMOVE_EVIDENCE_FACILITATED DISPUTE_SEARCH DISPUTE_SEARCH_FACILITATED DOCUMENT_UPLOAD_CREATE GRANT_PAYMENT_METHOD MERCHANT_ACCOUNT_ALL MERCHANT_ACCOUNT_FIND MULTI_USE_PAYMENT_METHOD_CREATE MULTI_USE_PAYMENT_METHOD_DELETE MULTI_USE_PAYMENT_METHOD_FIND MULTI_USE_PAYMENT_METHOD_UPDATE PAYMENT_CONTEXT_CREATE PAYMENT_CONTEXT_FIND PAYMENT_CONTEXT_SEARCH PAYMENT_METHOD_VAULT PAYMENT_METHOD_VERIFY READ_FACILITATED_TRANSACTIONS SETTLEMENT_BATCH_SUMMARY_GENERATE SHARED_VAULT_TRANSACTIONS SINGLE_USE_PAYMENT_METHOD_CREATE SINGLE_USE_PAYMENT_METHOD_FIND SUBSCRIPTION_CANCEL SUBSCRIPTION_CREATE SUBSCRIPTION_FIND SUBSCRIPTION_SEARCH SUBSCRIPTION_UPDATE TRANSACTION_CHARGE TRANSACTION_FIND TRANSACTION_MANAGE_SETTLEMENT TRANSACTION_REFUND TRANSACTION_REVERSE TRANSACTION_SALE TRANSACTION_SEARCH TRANSACTION_VOID