Authorization

POST

https://merchantapi-demo.bill24.io/merchantsecurity/authorize

This endpoint is used to authorize users to obtain a token for accessing the API.

NOTE

Merchant is required to initiate an authorization process to obtain a token for accessing all API endpoints.

if token expired you can use refreshToken to get new token.

Required fields: client_id secret refreshToken

Request

Header Params

Body Params application/json

Example

{
    "token": "3687203e-1cf4-43de-8a1c-c2192248132a",
    "clientId": "supplier_client",
    "secret": "q<8X8Eu4,Lr[4sxn",
    "refreshToken": ""
}

Request samples

Shell

JavaScript

Java

Swift

PHP

Python

HTTP

Objective-C

Ruby

OCaml

Dart

curl --location --request POST 'https://merchantapi-demo.bill24.io/merchantsecurity/authorize' \
--header 'Accept: application/json' \
--header 'Content-Type: application/json' \
--data-raw '{
    "token": "3687203e-1cf4-43de-8a1c-c2192248132a",
    "clientId": "supplier_client",
    "secret": "q<8X8Eu4,Lr[4sxn",
    "refreshToken": ""
}'

Responses

🟢200OK

application/json

Body

Example

{
    "code": 200,
    "message": "",
    "data": {
        "issuer": "http://192.168.197.18:23030",
        "token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjZCOUY3RDZBMjA2MTQxQzkzQ0I2NEVFNjRGOTBBNUQwQTQzO",
        "refreshToken": "65EE30E135B51D343F077738345CBDEEA66A3A796494F172DCF2EE6C9C1E0B7B",
        "tokenExpireTime": "2024-06-24T14:46:07.8930774+07:00"
    }
}

🟠404Record not found

🟠400Invalid input

Modified at 2025-07-08 17:11:15

Web SDK

Transaction Initiation