Access Token B2B

API Access Token B2B

Service Info

HTTP Method	POST
Service Code	73
Http Method	POST
Path	.../access-token/b2b

Header Name	Tipe Data	Wajib	Deskripsi
Content-Type	String	Y	application/json
X-TIMESTAMP	String	Y	Waktu lokal klien saat ini yyyy-MM-ddTHH:mm:ss.SSSTZD format
X-CLIENT-KEY	String	Y	Client’s client_id (diberikan pada saat onboarding )
X-SIGNATURE	String	Y	Dibuat dengan algoritma asymmetric without token : Signature Generation

Body

Parameter	Tipe Data	Wajib
grantType	String	Length: `<= 18 characters` Allowed Value: `"client_credentials"`

Request samples

JSON
CURL

{
  "grantType": "client_credentials"
}

curl --location --request POST '../access-token/b2b' \
--header 'X-TIMESTAMP: 2023-01-17T11:10:34+07:00' \
--header 'X-CLIENT-KEY: 001e5f0b-6ac6-4ac7-8831-51e2704b6ca1' \
--header 'X-SIGNATURE: 0DwdrWhnOGUQE7CWAn/yNWTi+zJWVLku5jo3Qk/HBn0SUmHTWSWZIGc2S+lPx0Ao5QuPXkIDPuhLO8/XaCZDTPpQGnSr1XVjUzQvvzLMlGZO4i8KvAOp0unP5RHiMQlN69RzN9qdNbc5wi64h4mEM78lURmWQwi9zBMTzTOTEnzi7HqndgFaFv9T4Ppnxv4Eu0rtiXwf1Kv3/taJ7T5gz3bCUFirTtE8id00gQsglIr5VGq3YjZOLzKWxrNih7kLS/01RVZ5V/Mqt4HGyXKrEB8DhiDz+4B7wFaNkxiFWC5XSPUFnwuRo8RSa6Q+x4alq4BB7fxmGEH4wzhd4Sr0eg==' \
--header 'Content-Type: application/json' \
--data '{
    "grantType": "client_credentials"
}'

```

Response Structure

Parameter	Tipe Data	Deskripsi
responseCode	String	Kode response
responseMessage	String	Pesan response
accessToken	String	Kode Rahasia untuk partner yang akan digunakan pada setiap request
tokenType	String	Jenis Type Kode token Dengan Value `Bearer`
expiresIn	String	Sesi Token berakhir dalam hitungan detik : `900 (15 menit)`

Response samples

{
  "responseCode": "2007300,",
  "responseMessage": "Successful,",
  "accessToken": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
  "tokenType": "Bearer,",
  "expiresIn\"": 900
}

List Response Code Access Token - B2B

Response Code	Response Message	Description
2007300	Success	Sukses
4007301	Invalid field format { field name }	Format invalid
4007302	Invalid mandatory field {field name}	Format pada bidang wajib tidak ada atau tidak valid
4017300	Unauthorized. Invalid Signature	`X-Signature` salah
4097300	Cannot use same X-EXTERNAL-ID in same day	`X-External-ID` sudah pernah digunakan di hari yang sama
4047301	Bad Request	Request header ada yang salah / kurang
4047301	Unauthorized. Client Forbidden Access API	Partner tidak dapat mengakses api terkait

Access Token B2B

Service Info​

Header​

Body​

Request samples​

Response Structure​

Response samples​

List Response Code Access Token - B2B​

Service Info

Header

Body

Request samples

Response Structure

Response samples

List Response Code Access Token - B2B