Skip to content

Authentication & Access token

This guide explains how to request an access token, needed by EDC to authenticate your API calls.

API connection details

The following information will be provided by Marigold Engage , which is needed to connect to the EDC API.

API connection details

  • API base URL: The base address for the EDC API, this is unique for each customer. Example: https://paranadigital.sdc.slgnt.eu/api

Security connection details

  • Oauth token URL: The address to request an access token.
    Default: https://auth.slgnt.eu/oauth/token
  • Client ID: The client ID is a unique identifier for your application.
    Example: 12345
  • Client Secret: The client secret is a secret key that is used to authenticate your application.
    Example: 123abc
  • Account ID: The account ID is the unique identifier for your account.
    Example: 12345ABCDE6789FGHIJ
  • Grant type: The grant type is the type of authentication you want to use.
    Default: client_credentials
  • Audience: The audience is the address of the API you want to access.
    Default: https://sdc.slgnt.eu

Request access token

For security and identification, an access token (in the form of a JWT token) is needed which confirms that your request belongs to an authorized session.

The access token can be requested using either a client-side or a server-side OAuth 2.0 implementation.

The steps are:

  1. The client provides a client ID, secret and other information (audience and other claims) as a request to the authorization server
  2. The authorization server validates this request. If verified, responds with an access token.
  3. The client uses this access token to request protected resources from the resource server.

Note

Note that the supplied access token is temporary and will expire after a certain period. Most modern Oauth2.0 clients support automatic refreshing of the access token as part of the authentication process.

In the normal order of operations, you will begin by requesting authentication from the Oauth token endpoint and Marigold Engage will send you an access token.

API operation

POST /oauth/token

Request body

{
  "client_id": 12345,
  "client_secret": "123abc",
  "account_id": "12345ABCDE6789FGHIJ",
  "grant_type": "client_credentials",
  "audience": "https://sdc.slgnt.eu"
}

Response

{
  "access_token": "abcdefghijklmnopqrstuvwxKLMNOPQRSTUVWXYZ",
  "token_type": "Bearer",
  "refresh_token": "1234567890abcdefghijklmnopqrstuIJKLMNOPQRSTUVWXYZ",
  "scope": "send:email",
  "expires_in": 86400
}

The returned access_token can then be used when making API calls toward Marigold Engage Delivery Cloud.

Oauth token API operation

More details on the request body and response can be found in the EDC API reference

Back to top