Authentication
Audit API requires an OAuth 2.0 bearer token to be provided in the authorization header for each HTTP request. The bearer token can be obtained from the authentication server using the OAuth 2.0 client credentials flow.
The client ID and client secret are provided by Sectigo Certificate Manager. Submit these credentials to the authentication server to receive an access token.
Use the code examples in the Create access token page to create an access token on your local machine. If successful, the response will contain an access_token field that can be used as the bearer token in the authorization header in audit API calls.
The expires_in parameter in the response states the lifetime of the access token in seconds.
Security is maintained since the access token is generated locally and audit API requests using the token are sent directly from your browser.
For more details, see Client Credentials and Making Authenticated Requests.
Updated 3 months ago