Authentication

If you are integrating with the Spacebring API, the authentication method you use will depend on your role:

Customers: Use Basic authentication.
Partners: Use OAuth2.

Basic authentication

Basic authentication is a simple authentication scheme built into the HTTP protocol. The client sends HTTP requests with the Authorization header that contains the word Basic word followed by a space and a base64-encoded string username:password. In Spacebring, username is your client_id and password is your client_secret. For example, to authorize as client id / client secret you would send

Authorization: Basic Y2xpZW50IGlkOmNsaWVudCBzZWNyZXQ=

You will need a Client ID and Client Secret, which are accessible only to the owner of your Spacebring app. The owner can retrieve this information by navigating to Spacebring > [Select Network] > Network Settings > Developers.

OAuth2

Obtain your Client ID and Client Secret and register a valid redirect_uri. To do it, please reach out to api@spacebring.com.

Obtaining authorization code

You need to make a GET request to https://api.spacebring.com/oauth2/authorize with following query parameters:

Parameter	Description
`client_id`	your Client ID
`redirect_uri`	your redirect_uri
`response_type`	should be set to `code`
`scope`	list of scopes separated by spaces or commas

If all parameters are valid, you will be redirected to our page where you can login. After that you will be redirected to your redirect_uri with code in query parameters.

Obtaining access and refresh tokens

With code received in previous step you need to make a POST request to https://api.spacebring.com/oauth2/token with following body in x-www-form-urlencoded format:

Parameter	Description
`client_id`	your Client ID
`client_secret`	your Client Secret
`grant_type`	should be set to `authorization_code`
`code`	code received in previous step

You will receive response that looks like this:

{
  "access_token": "accessToken",
  "expires_in": 3600,
  "refresh_token": "refreshToken",
  "scope": "resources locations",
  "token_type": "Bearer"
}

Accessing API

You need to pass your access token in ‘Authorization’ header along with spacebring-network-id header with the id of the network.

Refreshing access token

Access tokens have a limited lifetime of 1 hour. To get new access token you need to make a POST request to https://api.spacebring.com/oauth2/token with following body in x-www-form-urlencoded format:

Parameter	Description
`client_id`	your Client ID
`client_secret`	your Client Secret
`grant_type`	should be set to `refresh_token`
`refresh_token`	refresh token received in previous step

You will receive response that looks like this:

{
  "access_token": "accessToken",
  "expires_in": 3600,
  "scope": "resources locations",
  "token_type": "Bearer"
}

Refresh tokens don’t have expiration date and are not changed when you get new access token.

Revoking access token

To revoke your refresh and access tokens you need to make a POST request to https://api.spacebring.com/oauth2/revoke with token in query parameters. You will receive response that looks like this:

{
  "status": "success"
}

Getting started

Endpoints

Basic authentication

OAuth2

Obtaining authorization code

Obtaining access and refresh tokens

Accessing API

Refreshing access token

Revoking access token

Getting started

Endpoints

​Basic authentication

​OAuth2

​Obtaining authorization code

​Obtaining access and refresh tokens

​Accessing API

​Refreshing access token

​Revoking access token

Basic authentication

OAuth2

Obtaining authorization code

Obtaining access and refresh tokens

Accessing API

Refreshing access token

Revoking access token