Authorization for ONESOURCE API

This document describes OAuth 2.0 endpoints implemented for generating OAuth 2.0 token required to call ONESOURCE's Product APIs. The Access token is used to make authenticated requests until the token expires. Once the access token is not valid anymore, the endpoint will return an error message.

Oauth2 has three endpoints:

  • /token  Generates OAuth2 token based on client credentials or authorization code. Request body is different depending on what approach is chosen.
  • /authorize  Generates authorization code that is later used to generate OAuth2 token.