Get Access Token

POST 
/public/auth/v1/access-token

Exchange client credentials for an access token used to authenticate against Payonic services.

Usage

• Obtain an access token by posting clientId and clientSecret.
• Use the returned accessToken as a Bearer token in the Authorization header for subsequent requests.
• The access token can be used across all Payonic services
• Tokens are valid for 8 hours.

Environments

• Live clients are prefixed with ext_live_
• Test clients are prefixed with ext_test_
• Credentials are distinct per environment; do not mix them.

Client-side rotation

• Cache and reuse the issued token until it expires.
• Only request a new token after the previous one has expired to avoid unnecessary token churn.

Request

Responses

200

Access token issued

401

Invalid client credentials