Token endpoint

The resource owner password credentials grant type is suitable in cases where the resource owner has a trust relationship with the client, such as the device operating system or a highly privileged application.

application/x-www-form-urlencoded

Request Body required

grant_type string required

OAuth defines four grant types: authorization code, implicit, resource owner password credentials, and client credentials.

client_id string required

Valid client credential.

client_secret string required

Valid client credential.

username string

The resource owner username.

password string

The resource owner password.

code string

Valid authorization code.

Responses

application/json

Schema

Example (from schema)

Schema

access_token string required

expires_in int32

id_token string

refresh_token string

token_type string

{
  "access_token": "string",
  "expires_in": 0,
  "id_token": "string",
  "refresh_token": "string",
  "token_type": "string"
}

Token endpoint​

Token endpoint