In the response a refresh_token is also provided. This is however deprecated, and will be removed in future releases.
Do not use the refresh token to receive a new access_token.
To receive a new access_token, simply call the endpoint again, including your client_id and client_secret.
Using the Bearer token in the API-calls
In the result of the previous call, an access_token is returned. This access_token needs to be passed with every API call that you do (as a Bearer tokenin the authorization header).
Request
curl --location --request GET 'https://api-qa.venly.io/api/wallets' \
--header 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCIgOiAiSldUIiwia2lkIiA6ICJmQi1UenBOb0hBVGhwT2J4aW9qTDBrdm83MldmRzRXRXh1eFpiaXlGQUhzIn0.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.VgsaeHDKM7oNwQRxEkXkA2UhhFfkBg-HOnlz_xjE_T9B99Q6P_-JNwgKWXsRFe7ujdJl-OrwJhik8aqzLSGigplkN9HtpksHt9KoKMlM3aoaR8IaWIKSlj8Gly9roxMU20Ts7B2K9OQrdWfyIfCbKI43XMpqWaYMZoz-LqRMKHs09NGXEfVOJhGlB173mOMHgN0ZoKc1ddUlSSE1ES0m4RH08sMs-Wp2pNkvlPFyqXZB1Qnu_KVo4UhHbH4g5ztugCF6wTO71eFHxyJKDJOjiFhjCO-4-Iadx6I9dCg9VGFbNL06B3EUns_niemoLn6kiKyndLaJIugUIl8_gtQ86g'
In Postman, you can add the Bearer token in Authorization tab
Refreshing your access / Bearer token
The access token is valid for 5 minutes. After 5 minutes, you will need to request a new access token. This can be done by performing the same client_credentialscall: Requesting the Bearer token
⚠️ Do not use the refresh_token as this is deprecated and will be removed in future releases.