Client Authentication

Technical details for integrating with V3NITY PAAS services using Basic and Persistent tokens.

Basic Token

A standard authentication flow that provides short-lived access tokens and long-lived refresh tokens.

Token Definitions

  • Access Token: 30 minutes lifespan. Used for all API requests to secured resources.
  • Refresh Token: 15 days lifespan. Used exclusively to obtain a new access token.
  • Expiration: If the refresh token expires, the client must re-authenticate via the login service.

Obtain Access Token Flow

Obtain Access Token Flow

Refresh Token Flow

Refresh Token Flow

Persistent Token

Designed for server-to-server communication where long-term access is required without frequent re-authentication.

Key Characteristics

  • Long Lifespan: Typically valid for 1 year. Does not require a refresh flow.
  • Secured Environment: Can only be generated after an initial basic authentication.
  • Authorization Code: Enforced with a unique code for enhanced security.
  • Revocation: Access can be revoked by changing or removing the authorization code in the system.
ℹ️

Security Note

Persistent tokens should be stored securely in environment variables or secret managers. Never expose them in client-side code.

Obtain Persistent Token Flow

Obtain Persistent Token Flow

© V3 SMART TECHNOLOGIES PTE LTD