Get OAuth 2.0 Access Token and Refresh Tokens


Use the code you get after a user authorizes your app to get an access token and refresh token.  The access token will be used to authenticate requests that your app makes.  Access tokens expire after 6 hours, so you can use the refresh token to get a new access token when the first access token expires.

Method Details

HTTP Methods: POST

Content Type: application/x-www-form-urlencoded

Response Format: json

Requires Authentication? Yes

Headers User-Agent

Note: Rhythm access tokens will fluctuate in size as we change the information that is encoded the tokens. We recommend allowing for tokens to be up to 300 characters to account for any changes we may make.

Required Parameters

  • Grant Type grant_type=authorization_code Used in the request body

The grant type of the request must be authorization_code for the initial request to get the access and refresh tokens.

  • Client Id client_id=x

The Client ID of your app.

  • Client Secret client_secret=x Used in the request body

The Client Secret of your app.

  • Code code=x Used in the request body

The code parameter returned to your redirect URI when the user authorized your app.

Next Steps -> Status Update API, Refresh an Expired Access Token