Paack uses JWT for securing its APIs. You need to reauthenticate every 24 hours.
Contact us here to obtain the credentials needed for authentication.
Overview
Paack requires a JSON Web Token (JWT) to authorize each call to its APIs.
A JWT is generated using a unique combination of a client ID and client secret in an authentication call.
The value to extract from the response is contained in the access_token key, which should be used in the header of every HTTP request to a Paack API.
A JWT is valid for 24 hours. This means you need to reauthenticate every 24 hours.
Once a JWT has been created it should be stored in a secure location that can be accessed by the service that will call a Paack API.
Typical implementations of JWTs will use one service to generate a JWT and a separate one that calls the Paack API.
The client ID and client Secret should be stored in a secure location and only accessed when needed. For example, you should not embed the client ID and client Secret in code but store them in a secure location that can be accessed by the service that will create the JWT.
How to get it
You get a JWT (access token) in response to calling the following resource:
POST https://paack-hq-production.eu.auth0.com/oauth/token
{
"client_id": "{{client_id}}",
"client_secret": "{{client_secret}}",
"audience": "{{audience}}",
"grant_type": "client_credentials"
}
The client_id and client_secret are your credentials you get from the Customer Solutions team.
audience is the API's unique identifier. Refer to Get access token for the specific values.
Check out our step-by-step guide how to authenticate here.