Access Token

This is an optional, alternative method of authenticating requests to the MoneyKit API. Normally, you can authenticate requests by including X-Client-Id and X-Client-Secret HTTP headers. However, if you prefer, you can instead create a short-lived access token, using this endpoint.

That access_token can then be passed instead of the client/secret headers, as an Authorization: Bearer {access_token} HTTP header.

Note that when the token expires you must create a new one to replace it. The expiration is given as the expires_in response value.

The client_id and client_secret can be supplied to this endpoint as POST body parameters, or as a "Basic" auth header (base64-encoded {client_id:secret}).

Get details about the client and application associated with your access_token.