POST /authentication/token/

4Geeks uses oAuth2 as the authentication standard to use the API securely. So, for each request, you must send an ephemeral token, which you generate by sending the grant_type, client_secret, and client_credentials values to the token generation endpoint.

This will return an access_token, which you need to send on every request from now on.

Remember to always keep these credentials private, and never share them with third parties. It is advisable to store these credentials in environment variables.


The grant_type parameter should always be set to client_credentials as shown in the example below.

curl \
  -X POST \
  -d '{
        "grant_type": "client_credentials",


    "access_token": "PdSKf04xi9LEcvcwIAdbWAXVg380Kz",
    "token_type": "Bearer",
    "expires_in": 36000,
    "scope": "read write groups"