Skip to main content
POST
/
v1
/
login
/
oauth
/
access_token
curl --request POST \
  --url https://auth.sandbox.lerian.net/v1/login/oauth/access_token \
  --header 'Content-Type: application/json' \
  --data '
{
  "grantType": "client_credentials",
  "clientId": "ed1c72d366b07b84bd21",
  "clientSecret": "81f42de0fbe038f1bfefac55328839c92e1878da"
}
'
{
  "accessToken": "eyJhbGciOiJSUzI1NiIsImtpZCI6ImNlcnQtYnVpbHQtaW4iLCJ0eXAiOiJKV1QifQ...",
  "idToken": "eyJhbGciOiJSUzI1NiIsImtpZCI6ImNlcnQtYnVpbHQtaW4iLCJ0eXAiOiJKV1QifQ...",
  "tokenType": "Bearer",
  "expiresIn": 3600,
  "refreshToken": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...",
  "scope": "openid profile email"
}

Documentation Index

Fetch the complete documentation index at: https://docs.lerian.studio/llms.txt

Use this file to discover all available pages before exploring further.

Body

application/json

Information used to request an access token. Use one authentication method per request.

grantType
enum<string>
required

Grant type for username and password authentication.

Available options:
password
username
string
required

Username for authentication.

password
string<password>
required

Password for authentication.

Response

Returns the access credentials on successful authentication.

If the user has MFA enabled, the response will contain an MFAChallengeResponse instead, with a temporary mfaToken to complete the verification flow through the MFA endpoints.

Information used to manage OAuth2 authentication data. It securely stores access credentials, ensuring seamless authorization and control over protected resources.

accessToken
string
required

A temporary token that grants the user secure access the APIs.

expiresIn
integer
required

The time (in seconds) until the token expires.

refreshToken
string
required

A long-lived token that allows users to obtain a new access_token without requiring them to log in again.

tokenType
string
required

The type of token issued.

idToken
string

The identity details about the authenticated user in OpenID Connect standards. It can be used to verify user authentication.

scope
string

The level of access granted to the issued tokens