How to implement access_token generation via rest api


I am finishing migrating our code from Stormpath, but am having a problem with generating an access token as I had done previously. As far as I can tell, I should be able to call oauth2/v1/authorize with a sessionToken retrieved from the authn API. The problem is that no matter what I’m entering I get a 404 currently.

Here is what my longest string looks like - any help would be appreciated:

Note that in Stormpath I could just make a call and get the token back. I realize that I might need to parse some data that isn’t json, but that’s fine with me…how do I do this? I’ve spent quite a bit of time on this already and feel like I’m running in circles.


*I have looked at the other questions based on this, but they have not proven to be helpful.

1 Like

Per this response I should use the token api, and not authorize since I am doing this all in backend. The problem is that I have tried that one also, and cannot authenticate. If I use SSWS and pass in client_id then I’m still prompted for a username/password (which still doesn’t seem to work):

POST /oauth2/v1/token HTTP/1.1
Authorization: SSWS MYTOKEN
Accept: application/json
Content-Type: application/x-www-form-urlencoded
Cache-Control: no-cache


And if I try to remove client_id and secret, Base64ing MYCLIENTID:MYCLIENTSECRET and using Basic BASE64OUTPUT then I get an automatic failure

JustinPihony, Did you ever get this to work? I’m struggling with the same. Thanks!

Hi @mort

Yes I was able to solve it in my case by setting the Access Policy to “All Clients”. If you need specifics let me know.