Create an auth token

POSThttps://api.courier.com/auth/issue-token

Returns a new access token.

BODY PARAM

scopestringrequired

Permissions to apply to the token.

expires_instring

A string describing the time span the token is valid for. Can also be a number instead of a string (in seconds). See https://github.com/vercel/ms for examples.

Responses

AUTH TOKEN

curl --request POST \
     --url https://api.courier.com/auth/issue-token \
     --header 'Accept: application/json' \
     --header 'Content-Type: application/json' \
     --data '
{
  "scope": "user_id:user_id_you_want_to_create_scope_for read:messages",
  "expires_in": "2 days"
}
'

// Dependencies to install:
// $ npm install node-fetch --save

const fetch = require('node-fetch');

const options = {
  method: 'POST',
  headers: {
    Accept: 'application/json',
    'Content-Type': 'application/json'
  },
  body: JSON.stringify({
    "scope": "user_id:user_id_you_want_to_create_scope_for read:messages",
    "expires_in": "2 days"
  })
};

fetch('https://api.courier.com/auth/issue-token', options)
  .then(response => response.json())
  .then(response => console.log(response))
  .catch(err => console.error(err));

require 'uri'
require 'net/http'
require 'openssl'

url = URI("https://api.courier.com/auth/issue-token")

http = Net::HTTP.new(url.host, url.port)
http.use_ssl = true

request = Net::HTTP::Post.new(url)
request["Accept"] = 'application/json'
request["Content-Type"] = 'application/json'
request.body = "{\"scope\":\"user_id:user_id_you_want_to_create_scope_for read:messages\",\"expires_in\":\"2 days\"}"

response = http.request(request)
puts response.read_body

# Dependencies to install:
# $ python -m pip install requests

import requests

url = "https://api.courier.com/auth/issue-token"

payload = {
  "scope": "user_id:user_id_you_want_to_create_scope_for read:messages",
  "expires_in": "2 days"
}
headers = {
  "Accept": "application/json",
  "Content-Type": "application/json"
}

response = requests.request("POST", url, json=payload, headers=headers)

print(response.text)

package main

import (
  "fmt"
  "strings"
  "net/http"
  "io/ioutil"
)

func main() {

  url := "https://api.courier.com/auth/issue-token"

  payload := strings.NewReader("{\"scope\":\"user_id:user_id_you_want_to_create_scope_for read:messages\",\"expires_in\":\"2 days\"}")

  req, _ := http.NewRequest("POST", url, payload)

  req.Header.Add("Accept", "application/json")
  req.Header.Add("Content-Type", "application/json")

  res, _ := http.DefaultClient.Do(req)

  defer res.Body.Close()
  body, _ := ioutil.ReadAll(res.Body)

  fmt.Println(res)
  fmt.Println(string(body))

}

<?php
// Dependencies to install:
// $ composer require guzzlehttp/guzzle

require_once('vendor/autoload.php');

$client = new \GuzzleHttp\Client();

$response = $client->request('POST', 'https://api.courier.com/auth/issue-token', [
  'body' => '{"scope":"user_id:user_id_you_want_to_create_scope_for read:messages","expires_in":"2 days"}',
  'headers' => [
    'Accept' => 'application/json',
    'Content-Type' => 'application/json',
  ],
]);

echo $response->getBody();

Response Example

{
  "token": "5e2b2615.05efbb3acab9172f88dd3f6f"
}

Usage

This token can be used as a bearer token in place of a normal API Key for the following endpoints:

PUT | PATCH /users/:user_id/tokens/:token (must have write:user-tokens scope).
GET /users/:user_id/tokens/:token (must have read:user-tokens scope).
GraphQL (POST) /client/q Required permissions depend on query / mutation.
- messages Requires read:messages scope.

Notes:

Endpoints that are tied to a user_id require the user_id to be listed in the scope field (i.e user_id:123)

Available Scopes

user_id:<user-id> - Gives the token access to a given user. Multiple can be listed. Ex user_id:pigeon user_id:bluebird. User ID scopes must be used in conjunction with other scopes to specify which resources of the user the token can access.
read:messages - Gives the token access to read messages. Must be used in conjunction with one or more user_ids.
read:user-tokens - Gives the token access to read user tokens. Must be used in conjunction with one or more user_id scopes.
write:user-tokens - Gives the token access to write user tokens. Must be used in conjunction with one or more user_id scopes.
read:brands[:<brand_id>] Give the token access to read brands, optionally restricted to a specific brand_id. Examples read:brands, read:brands:my_brand.
write:brands[:<brand_id>] Give the token access to read brands, optionally restricted to a specific brand_id. Examples write:brands, write:brands:my_brand.