Authentication

When you register as a Tilia Pay integrator, you are provided with a client ID and secret that are used to authenticate your application.

It is important that you keep your client ID and secret secure, as anyone who has access to it can impersonate your application.

If you do not have a client ID and secret, contact us.

In addition, each endpoint specifies at least one scope which is required to access the endpoint's methods. Scope information can be found in the API Reference.

Sample request

In the following CURL request, replace <your-client-id> and <your-client-secret> with your credentials, along with passing the required scope.

curl --location --request POST 'https://auth.tilia-inc.com/token?client_id=<your-client-id>
&client_secret=<your-client-secret>&grant_type=client_credentials&scope=user_info'

The authorization service returns a JSON response with the token, token type, token expiry time (in seconds), and scopes.

Copy
Copied
{
    "access_token": "your-authentication-token",
    "token_type": "Bearer",
    "expires_in": 3600,
    "scope": "user_info"
}