Skip to main content

PasswordTokenRequest

Password Token Request is used when the application exchanges the user’s username and password for an access token. This grant type is suitable for first-party clients, such as those built into the device operating system or a highly-trusted application.

usernamestringrequired

The username that is assigned to the user's account.

Example: john.done@example.com
passwordstringrequired

The password that is associated with the user's account.

Example: password
scopestring

The scope of the requested access token. Can be used to restrict the new access token to a subset of the scope allowed to the client and token type.

Example: whitelabelWallet
digital_fingerprintstringrequired

Unique identifier assigned to individual users or devices, used to create their digital identity.

Example: bb229878-c877-4cc3-91c4-2030c34be28a
login_strategyLoginStrategy (string)

Parameter, which indicates what will be the preferred login method.

  • password - The user will be asked to enter password.
  • pin - The user will be asked to enter PIN.
  • biometric - The user will be asked to authenticate using biometric data.

Possible values: [pin, password, biometric]

device_idstring

Unique identifier used for pairing the device.

Example: 832c1a5d-f48e-42ad-b477-df28d4adfce9
PasswordTokenRequest
{
  "username": "john.done@example.com",
  "password": "password",
  "scope": "whitelabelWallet",
  "digital_fingerprint": "bb229878-c877-4cc3-91c4-2030c34be28a",
  "login_strategy": "pin",
  "device_id": "832c1a5d-f48e-42ad-b477-df28d4adfce9"
}