Authenticate to our API so you can start using the sandbox.
CLIENT_ID
and CLIENT_SECRET
. Later, when moving to production, create a separate API key with live-only permission. Save this key’s CLIENT_ID
and CLIENT_SECRET
securely in your own production environment to interact with the Noyo API.
Once you have an API key, you can generate a short-lived access token (valid for ~10 minutes) using the CLIENT_ID
and CLIENT_SECRET
as the username/password combination in a Basic Authentication header.
Use the following curl snippet directly, or import it into API client software such as Postman:
ACCESS_TOKEN
:
ACCESS_TOKEN
in the Authorization header for each request you make to the Noyo API, like this request to get a list of groups for your organization in the sandbox:
200
response to confirm a successful call:
Bearer <JWT>
.
expires_in
property returned along with any API token. The expires_in
value is the number of milliseconds until the API token expires. A token refresh performed before that time could mitigate this issue.