POST
/
partner
/
oauth
/
token
curl -X POST \
  $AUTH_HEADERS \
  https://api.thanxsandbox.com/partner/oauth/token \
  -d '{
    "merchant_id": "k2lye10h32l5wzo",
    "email": "example@example.com",
    "expires_in": 3600
  }'
{
  "access_token": "945148251b603ae34561d90acfe4050e67494d6d1e65d4d3d52798407f03c0bd",
  "token_type": "Bearer",
  "scope": "passwordless",
  "created_at": 1577836800,
  "expires_in": 3600
}

Scope required: auth.create

This endpoint allows for the programmatic generation of an API access token for a given user. This access token can then be used to access the Consumer API.

Programmatic generation of access tokens on behalf of users is designed for Kiosk integrations to facilitate user reward redemption, hence the limited TTL of each token generated.

Parameters

merchant_id
string
required

Merchant ID

user_id
string

Thanx User ID. One of user_id, email, or phone must be specified.

email
string

Email address. One of user_id, email, or phone must be specified.

phone
string

Email address. One of user_id, email, or phone must be specified.

expires_in
integer

The number of seconds after which this access token will expire. Defaults to 900 seconds (15 minutes). The maximum allowed expiration for a partner-generated token is 3600 seconds (1 hour). The minimum expiration is 60 seconds.

Response

access_token
string

The user’s access token, for use in accessing the Consumer API

token_type
string

The type of token, “Bearer”

scope
string

The API scopes granted to the access token

created_at
integer

The number of seconds since the epoch

expires
integer

The number of seconds after which this access token will expire