IAM#

Before your application can access private data using other Workiva APIs, it must obtain an access token that grants access to those APIs.

Use the IAM REST API endpoint to exchange your OAuth credentials (client_id and client_secret) for a token.

BearerToken#

Bearer token to use in subsequent requests to the Workiva APIs.

Name	Type	Description	Restrictions
access_token	string	The opaque string used to authorize and make requests on behalf of the user	required
expires_in	integer	The number of seconds the access token is valid	required
scope	string	The limits of the user’s access with the token, such as Read or Create	required
token_type	string	The type of access token; typically bearer	required

{
  "access_token": "string",
  "expires_in": 0,
  "scope": "string",
  "token_type": "string"
}

Error response object containing an error code.

Name	Type	Description
error	string	The possible `error` codes are: - `invalid_request` - The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. - `unauthorized_client` - The client is not authorized to request an authorization code using this method. - `access_denied` - The resource owner or authorization server denied the request. - `unsupported_response_type` - The authorization server does not support obtaining an authorization code using this method. - `invalid_scope` - The requested scope is invalid, unknown, or malformed. - `server_error` - The authorization server encountered an unexpected condition that prevented it from fulfilling the request. - `temporarily_unavailable` - The authorization server is currently unable to handle the request due to a temporary overloading or maintenance of the server.
error_description	string	Human-readable ASCII text providing additional information.
error_uri	string	A URI identifying a human-readable web page with information about the error.

{
  "error": "string",
  "error_description": "string",
  "error_uri": "string"
}