OAuth 2.0 Client Credentials
To access the API, you’ll need to:1
Obtain client credentials (client ID and client secret) from Aspect Systems
2
Exchange these credentials for an access token
3
Include the access token in the Authorization header of your API requests
Obtaining Client Credentials
Contact Aspect Systems support to obtain your client ID and client secret. These credentials are unique to your application and should be kept secure.Request Credentials
Email our support team to request API credentials.
Obtaining an Access Token
Make a request to the token endpoint to obtain an access token.Obtain Access Token
Learn more about the token endpoint.
Using the Access Token
Include the access token in the Authorization header of all API requests:Token Expiration
Access tokens are valid for 30 days (2,592,000 seconds). After a token expires, you’ll need to request a new one using the same process.We suggest you generate a new token before it’s expiration (i.e. after 15 days).
Security Best Practices
- Keep your client credentials secure and never expose them in client-side code
- Store access tokens securely
- Implement token refresh logic to handle token expiration
- Use HTTPS for all API requests
- Validate JWT tokens on your server before trusting the contained information