Authentication
At BCB Group, we prioritize the security and integrity of your API interactions. All API calls to BCB services require robust authentication to ensure that only authorized applications can access your data and initiate transactions.
We utilize the widely adopted OAuth 2.0 Client Credentials Grant flow for secure API access. This method is ideal for server-to-server communication where an application needs to access resources on its own behalf, rather than on behalf of an end-user.
For every API request, you must present a valid Access Token (specifically, a Bearer token) in the authorization header. This token acts as a digital key, proving your application's identity and permissions.
How to Authenticate: Obtain an Access Token: You can request a new Access Token by authenticating with your unique Client ID and Client Secret. These credentials are provided to you upon successful registration with BCB Group.
Endpoint: https://auth.bcb.group/oauth/token Method: POST Content-Type: application/json Body:
Example cURL
curl --request POST \
--url https://auth.bcb.group/oauth/token \
--header 'content-type: application/json' \
--data '{"client_id":"YOUR-CLIENT-ID","client_secret":"YOUR-CLIENT-SECRET"}'Updated 3 months ago