Authentication

Our GraphQL API uses an OAuth 2.0 client credentials flow to authenticate clients.

Requesting API Access

In order to access the API, you'll first need to request access by contacting us at developer-support@firstdollar.com.

Creating an Access Token

Request
{
  method: 'POST',
  url: 'https://api.firstdollar.com/v0/auth/token',
  headers: {'Content-Type': 'application/json'},
  data: {
    grant_type: 'client_credentials',
    client_id: '<your-client-id>',
    client_secret: '<your-secret>'
  }
}

Sample Response
{
  "access_token": "<access-token>",
  "refresh_token": "<refresh-token>",
  "expires_in": 3600
}

Refreshing an Access Token

Access tokens expire after one hour. You can generate a new one using the method above or by using the refresh_token grant_type with the refresh token you obtained from a previous call to /v0/auth/token.

Note: both methods generate a new access_token.

Request
{
  method: 'POST',
  url: 'https://api.firstdollar.com/v0/auth/token',
  headers: {'Content-Type': 'application/json'},
  data: {
    grant_type: 'refresh_token',
    refresh_token: '<your-refresh-token>'
  }
}

Sample Response
{
  "access_token": "<access-token>",
  "refresh_token": "<refresh-token>",
  "expires_in": 3600
}

Providing the Access Token on API Requests

Request
{
  method: 'POST',
  url: 'https://api.firstdollar.com/graphql',
  headers: {
    'Content-Type': 'application/json',
    Authorization: 'Bearer <access-token>',
  },
  data: {
    query: '{ ... }',
    variables: { ... },
  }
}

Authentication

Requesting API Access​

Creating an Access Token​

Refreshing an Access Token​

Providing the Access Token on API Requests​

Requesting API Access

Creating an Access Token

Refreshing an Access Token

Providing the Access Token on API Requests