MATTR VII PlatformIssuance
Exchange authorization code for access token
This endpoint is used to exchange an authorization code or a pre-authorized code for an access token, which is later used to request a credential.
- In an Authorization Code flow the authorization code is obtained from the authorization endpoint after the user has successfully authenticated.
- In a Pre-authorized Code flow the pre-authorized code is obtained from the offer URI.
See https://openid.net/specs/openid-4-verifiable-credential-issuance-1_0.html#name-token-endpoint for more information.
Analytic events
- OPENID_TOKEN_START
- OPENID_TOKEN_SUCCESS
- OPENID_TOKEN_FAIL
POST
/v1/oauth/tokenRequest Body
application/x-www-form-urlencoded
client_id*string
The client identifier.
grant_type*string
The grant type, which must be 'authorization_code'.
Value in
"authorization_code"redirect_uri*string
The redirect URI that was used in the authorization request.
code*string
The authorization code obtained from the authorization endpoint.
code_verifier*string
SHA256 hash of the code_challenge in the authorization request.
Response Body
application/json
application/json
text/plain
curl -X POST "https://example.vii.au01.mattr.global/v1/oauth/token" \ -H "Content-Type: application/x-www-form-urlencoded" \ -d 'client_id=string&grant_type=authorization_code&redirect_uri=string&code=string&code_verifier=string'{
"access_token": "KrrFP8GUeddJJtj7EF-4ugdvCl-dDdWwOqvAbvYsmfy",
"token_type": "Bearer",
"expires_in": 900,
"scope": "mso_mdoc:org.iso.18013.5.1.mDL"
}{
"code": "string",
"message": "string",
"details": [
{
"value": "string",
"msg": "Invalid value",
"param": "id",
"location": "body"
}
]
}"Unauthorized"Empty
Empty
How would you rate this page?