Create a token
Creates a new customer access token.
Authorizations
Body
The grant type.
agent_token— for backend integrations that manage customer identities using an agent token.cookie— for frontend apps that use browser cookies to identify customers.identity_token— for exchanging an identity transfer token for a customer access token.
agent_token, cookie, identity_token The client ID for which the token is being issued.
The redirect URI. Required for grant_type=cookie. If not provided, the value of the Origin header is used.
The organization ID for which the token is being issued. Required only if grant_type=cookie.
The entity ID for which the token is being issued. The entity (customer) must already exist. Can be used only for grant_type=agent_token.
The access token lifetime, in seconds.
An identity transfer token. Can be used only for grant_type=identity_token.
A code verifier, as in the OAuth2 PKCE flow. Can be used only for grant_type=identity_token.
Response
OK: Returns token details.
OAuth 2 Bearer token
The access token value.
The client ID for which the token was issued.
The entity ID for which the token was issued.
The access token lifetime, in seconds.
The organization ID for which the token was issued.
The access token type.