API calls need to be authorized with OAuth 2.0 using a Bearer token.
To get the token from Bringg, send a POST request to the Get Token endpoint specified in the APIs section of your Sandbox, using the Client ID and Client Secret provided under the Registration Merchants section:
Token Expiry
Tokens expire after 30 minutes. So you will need to make sure to get a fresh token when necessary.
Authorization Data must be in Request Headers
Make sure that authorization data is added to Request Headers and NOT to the Request URL. Otherwise, you will receive a 401 Unauthorized response.
{
"grant_type": "client_credentials",
"client_id": "123456abcde",
"client_secret": "zxcvbn54321"
}
BODY PARAMS
|
grant_type string |
The value is always "client_credentials" |
|
client_id string |
Your Client ID |
|
client_secret string |
Your Client Secret |
EXAMPLE RESPONSE
{
"access_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJhdXQiOiJvYXV0aDIiLCJqdGkiOiI2YmI1NDAwY2ZjM2JlYmExZTM4MzIxM2E1MjkzN2VhNiIsInN1YiI6IlU6NjYwOTY0IiwidGlkIjoxMDA3LCJpYXQiOjE1OTEwODQzNjksImV4cCI6MTU5MTA4NjE2OSwic2xpIjowLCJhdWQiOlsidUpEaEVWY004T0kyYk1RT0p5aGVDZXNPaTVHekQtRzNJMnRyLVc3LS12byJdLCJpc3MiOiJ1cm46eC1icmluZ2c6c2VydmljZTphcGkiLCJyZWciOiJ1cy1lYXN0LTQtZ2NwIiwic2NwIjpbImZsZWV0Il0sInZlciI6IjIuMCJ9.KsWEGme6IRRIbS7Q5KF0L-cbwZ_DUYhKlu09Bz7_2LeQbnwzsnuDvVs9eb6zylIIiVdw_P0_JHSXtsfIxS0DNg",
"token_type": "Bearer",
"expires_in": 1800,
"created_at": 1591084369
}