To run a Common Services REST API request
or a request from a REST API provided by a product linking with Common
Services, you must first acquire an access token to use the Common Services user authentication.
An access token is authentication information that is returned when a session is generated. This
authentication information determines whether a request is issued from an authenticated
user.
The operational flow for running a REST API request is as follows:
- Run the Common Services REST API request to acquire an access token.
- In the Authorization header of the request header, specify the access token
in the following format, and run a Common Services REST API request or a request from a REST
API provided by another product.
Authorization: Bearer access-token
Example of specifying an Authorization header:
Authorization: Bearer eyJhbxxx
Note:
- The validity period of an access token expires five minutes after the last time Common Services was accessed.
- An identify provider user cannot obtain an access token, so they cannot execute a Common Services REST API request.