oAuth2 Authentication – </> xscores developer

Obtain a Bearer Token

To use our oAuth2 authentication server, you have to authenticate with your backend, save the token, and then use it for all of your calls to the API Endpoints.

POST request to the Authentication end-point: Below you can find some examples on how you can request a Bearer token to use in the API Requests.

You can use your current username and password that you already use in data2 endpoints.

<?php

$curl = curl_init();

curl_setopt_array($curl, array(
  CURLOPT_URL => 'https://dev-auth.xscores.com/auth/realms/xscores/protocol/openid-connect/token',
  CURLOPT_RETURNTRANSFER => true,
  CURLOPT_ENCODING => '',
  CURLOPT_MAXREDIRS => 10,
  CURLOPT_TIMEOUT => 0,
  CURLOPT_FOLLOWLOCATION => true,
  CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
  CURLOPT_CUSTOMREQUEST => 'POST',
  CURLOPT_POSTFIELDS => 'grant_type=password&client_id=xscores-api&username=<your_username>&password=<your_password>',
  CURLOPT_HTTPHEADER => array(
    'Content-Type: application/x-www-form-urlencoded'
  ),
));

$response = curl_exec($curl);

curl_close($curl);
echo $response;

// WARNING: For POST requests, body is set to null by browsers.
var data = "grant_type=password&client_id=xscores-api&username=your_username&password=your_password";

var xhr = new XMLHttpRequest();
xhr.withCredentials = true;

xhr.addEventListener("readystatechange", function() {
  if(this.readyState === 4) {
    console.log(this.responseText);
  }
});

xhr.open("POST", "https://dev-auth.xscores.com/auth/realms/xscores/protocol/openid-connect/token");
xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");

xhr.send(data);

curl –location –request POST 'https://dev-auth.xscores.com/auth/realms/xscores/protocol/openid-connect/token' \
–header 'Content-Type: application/x-www-form-urlencoded' \
–data-urlencode 'grant_type=password' \
–data-urlencode 'client_id=xscores-api' \
–data-urlencode 'username=your_username' \
–data-urlencode 'password=your_password'