Authentication
- Method
RTP APIs uses the OAuth 2.0 protocol for authentication. All the requests to RTP API use OAuth 2.0 bearer access token to access the resources. The access token should be kept as secret. Access token is valid for a specific time interval and expire after that.
RTP team provides client credentials after registering application with PayCenter Authorization server. The client application requests an access token from PayCenter Authorization server and extracts an access token from the response. The client application sends the access token in the header to the RTP API that they want access.
OAuth 2.0 Access Token
Use token method to request access token providing client credentials to the Authorization server.
Invalidated Token
A Bearer Token may be invalidated using /revoke. Once a Bearer Token has been invalidated, new creation attempts will yield a different Bearer Token and usage of the previous token will no longer be allowed. Only one bearer token may exist outstanding for an application, and repeated requests to this method will yield the same already-existent token until it has been invalidated
Parameters
| TYPE | NAME | DESCRIPTION |
|---|---|---|
| AuthenticationRequest | request |
Returns
| TYPE | DESCRIPTION |
|---|---|
| AuthenticationResponse |