Tokens: What They Are and How to Get Them

What are tokens?

Tokens are temporary secret keys required to authenticate with the API Orchestrator.

There are three token types:

• access_token and id_token — carry information about the integration user and grant access to banking services. Valid for 24 hours.
• refresh_token — simplifies reissuing access_token and id_token. Valid for 30 days.

Tokens are revoked when:

• the password is changed or the user account associated with the tokens is deactivated;
• a new set of tokens is issued.

How to obtain tokens

There are two ways to get tokens: