The API uses Oauth2 authentication of the type "Password grant"
The client has to authenticate with a username and a password.
POST /integration/token HTTP/1.1
Host: test.mycarwash.eu
Content-type: application/x-www-form-urlencoded
Accept: application/json
grant_type=password&username=exampleuser&password=examplepasswordAfter a successful login, the client receives an access token.
{
"access_token": "...",
"token_type": "bearer",
"expires_in": 86399,
".issued": "Fri, 18 Jan 2019 21:24:16 GMT",
".expires": "Sat, 19 Jan 2019 21:24:16 GMT"
}This access token can be used by the client by adding an Authorization header to each request.
Authorization: bearer tokenWhere token is the access token returned.