OAuth 2.0 is the industry-standard protocol for authorization.  This API returns an JSON web token (JWT) which is required to authorize API calls for a given app.

You can request up to 5 CLIENT_ID + CLIENT_Secret per company account.

API features

  • access tokens generated by this API are valid for a limited period (30 mins) which is returned in the API response.
  • If the token expires, this API will need to be called again.

API Details

Status

LIVE

Version

v1

Maturity status

Production

Endpoint (Production)

https://apis.colt.net/authentication/v1/oauth/token

Endpoint (Sandbox)

https://sandbox.apis.colt.net/authentication/v1/oauth/token

 

Error returned in the response

Http responsecodereasonmessagedetails (for reference only)

400

Bad request

001Validation not metThe request is missing authorization parameter.The request is missing authorization parameter
002Validation not metThe request is missing grant_type.The request is missing grant_type
003Validation not metThe request is missing content_type headerThe request is missing content_type header
004Validation not metThe request is missing x-tracking-id.The request is missing x-tracking-id
005Validation not metInvalid input parameter

The request contains

  1. unsupported parameters
  2. Multiple credentials
  3. More than one mechanism for authenticating
006Validation not metThe authorization grant type is not supported by authorization serverThe authorization grant type is not supported by authorization server

401

Unauthorized

001Authentication errorThe authorization parameter is missing.Client authentication failed due to no client authentication included in the request.
002Authentication errorThe authorization parameter is not valid.Client authentication failed due to unsupported authentication method other than Basic.

415

Unsupported Media Type

001Validation not metThe format of the posted body is not supported by the endpoint.The format of the posted body is not supported by the endpoint.

500

Internal server error

001Internal errorAn unknown internal error occurredGeneric failure message used if no more precise code can be provided.
002internal errorO Auth server failed.The server failed to generate access token

503

Service unavailable

001service unavailableThe service is temporarily unavailableBackend unavailable.