Implicit token

An implicit token is typically used for situations where you are requesting data on the client side and you are exposing your public key. When authenticated implicitly, you can only fetch (GET) data with live status (products, categories, brands, etc). Most likely, you will use an implicit token inside client-side applications, such as JavaScript.

warning

An implicit token can be thought of as a Read only token.

The following diagram illustrates the process flow for authentication for a client-side implicit application and a subsequent request to GET products.

Client side application authentication flow diagram

`POST` Create an implicit token

https://api.moltin.com/oauth/access_token

Request

Response

Form Data Parameters:

Name	Required	Type	Description
`client_id`	Required	`string`	Your client_id
`grant_type`	Required	`string`	The grant type, in this case it must be implicit

Example response code: 200 OK

Example response body:

{
    "expires": 1524486008,
    "identifier": "client_credentials",
    "expires_in": 3600,
    "access_token": "xa3521ca621113e44eeed9232fa3e54571cb08bc",
    "token_type": "Bearer"
}

cURL

JavaScript SDK

Swift SDK

curl -X "POST" "https://api.moltin.com/oauth/access_token" \
     -d "client_id=XXXX" \
     -d "grant_type=implicit"

const MoltinGateway = require('@moltin/sdk').gateway
const Moltin = MoltinGateway({
  client_id: 'X'
})

let moltin = Moltin(withClientID: "<your client ID>")

Commerce Cloud

Authentication

Filtering

Products

Product Variations

Brands

Categories

Collections

Inventory

Carts

Promotions

Payments

Paying for an Order

Orders

Customers

Addresses

Events (Webhooks)

Custom Data (Flows)

Files

Jobs

Currencies

Settings

warning

`POST` Create an implicit token

warning

POST Create an implicit token

`POST` Create an implicit token