post
https://apistaging.taxizer.com/v1/Auth/Connect
This endpoint is used to authenticate app and issue an authentication token.
To verify any API request sent to our server, it's necessary to include your app authentication token within the request headers as demonstrated below:
Authorization : Bearer Token1192348rasioduhgv8aw9g
This authentication token is tied to your app account on Taxizer and grants access to all resources associated with your account.
You can generate an authentication token by submitting your account credentials (clientId, clientSecret) to this endpoint.
Tokens are tied to the app and must be included in all subsequent API requests in the header as Authorization: Bearer .
Requests without a valid token will be treated as unauthorized access.
Request Body
| Parameter | Data Type | Field Validations | Description |
|---|---|---|---|
| clientId | String | Mandatory | A unique identifier generated once from the dashbaord |
| clientSecret | String | Mandatory | A secret key, which is paired with your client ID, is generated and can be viewed only once. |
Example Response
{
"appId": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
"appName": "InvoiceApp",
"accountId": "acc12345",
"accountName": "MainAccount",
"username": "user2024",
"jwtToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IlVzZXIyMDI0IiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c",
"jwtTokenExpireAtUTC": "2024-09-15T12:28:18.789Z",
"refreshToken": "def45678",
"refreshTokenExpireAtUTC": "2024-09-15T12:28:18.789Z"
}
Response Body
| Parameter | Data Type | Description |
|---|---|---|
| jwtToken | String | The JWT (JSON Web Token) used for maintaining the authenticated session. |
| jwtTokenExpireAtUTC | String | The expiration time of the JWT token, represented in UTC. |
| refreshToken | String | A token used to renew the JWT upon expiry without requiring the app to re-authenticate. This field. |
| refreshTokenExpireAtUTC | String | The expiration time of the refresh token, represented in UTC. Similar to the jwtTokenExpireAtUTC, this indicates when the refresh token will no longer be valid. |
Response Status Codes
| HTTP Status Code | Description |
|---|---|
| 200 | App credentials are correct; you will receive both an access token and a refresh token. |
| 400 | The clientId or clientSecret is incorrect. |