{"id":256,"date":"2023-06-09T10:42:35","date_gmt":"2023-06-09T10:42:35","guid":{"rendered":"https:\/\/developers.10npay.com\/?post_type=docs&#038;p=83"},"modified":"2023-06-09T10:42:35","modified_gmt":"2023-06-09T10:42:35","password":"","slug":"authorize-endpoint","status":"publish","type":"docs","link":"https:\/\/developers.10npay.com\/bg\/docs\/authorize-endpoint\/","title":{"rendered":"Authorize Endpoint"},"content":{"rendered":"<p class=\"wp-block-paragraph\">The authorize endpoint can be used to request tokens or authorization codes via the browser.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This process typically involves authentication of the end-user and optionally consent.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"URL:-https:\/\/auth.10npay.com\/connect\/authorize\">URL: <a href=\"https:\/\/auth.10npay.com\/connect\/authorize\"><u>https:\/\/auth.10npay.com\/connect\/authorize<\/u><\/a><\/h4>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"Parameters\">Parameters<\/h4>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"client_id-(required)\">client_id (required)<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">identifier of the client.<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"scope-(required)\">scope (required)<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">one or more registered scopes, delimited with space (required)<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"response_type-(required)\">response_type (required)<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; id_token requests an identity token (only identity scopes are allowed)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; token requests an access token (only resource scopes are allowed)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; id_token token requests an identity token and an access token<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; code requests an authorization code<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; code id_token requests an authorization code and identity token<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; code id_token token requests an authorization code, identity token and access token<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"response_mode\">response_mode<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; form_post sends the token response as a form post instead of a fragment encoded redirect (optional)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; query sends the token response as a fragment encoded redirect (default)<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"prompt\">prompt<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; none no UI will be shown during the request. If this is not possible (e.g. because the user has to sign in or consent) an error is returned<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; login the login UI will be shown, even if the user is already signed-in and has a valid session<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"redirect_url\">redirect_url<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">must exactly match one of the allowed redirect URIs for that client (required)<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"state\">state<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">Authentication service will echo back the state value on the token response, this is for the round-tripping state between client and provider, correlating request and response and CSRF\/replay protection. (recommended)<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"nonce\">nonce<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">Authentication service will echo back the nonce value in the identity token, this is for replay protection) Required for identity tokens via the implicit grant.<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"code_challenge\">code_challenge<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">sends the code challenge for PKCE<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"code_challenge_method\">code_challenge_method<\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; plain indicates that the challenge is using plain text (not recommended)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; S256 indicates the challenge is hashed with SHA256<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"Sample-Request\">Sample Request<\/h4>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><td>GET <a href=\"https:\/\/auth.10npay.com\/connect\/authorize\">https:\/\/auth.10npay.com\/connect\/authorize<\/a>?<br>&nbsp;&nbsp;&nbsp; client_id=client1&amp;<br>&nbsp;&nbsp;&nbsp; scope=openid email api1&amp;<br>&nbsp;&nbsp;&nbsp; response_type=code&amp;<br>&nbsp;&nbsp;&nbsp; response_mode=query&amp;<br>&nbsp;&nbsp;&nbsp; prompt=login&amp;redirect_uri=https:\/\/myapp\/callback&amp;<br>&nbsp;&nbsp;&nbsp; state=abc&amp;<br>&nbsp;&nbsp;&nbsp; nonce=xyz&amp;<br>&nbsp;&nbsp;&nbsp; code_challenge=jkl&amp;<br>&nbsp;&nbsp;&nbsp; code_challenge_method=S256<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">(URL encoding removed, and line breaks added for readability)<\/p>","protected":false},"excerpt":{"rendered":"<p>The authorize endpoint can be used to request tokens or authorization codes via the browser. This process typically involves authentication of the end-user and optionally consent. URL: https:\/\/auth.10npay.com\/connect\/authorize Parameters client_id (required) identifier of the client. scope (required) one or more registered scopes, delimited with space (required) response_type (required) \u25cf&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; id_token requests an identity token (only [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","template":"","meta":{"footnotes":""},"doc_category":[],"doc_tag":[],"knowledge_base":[33],"class_list":["post-256","docs","type-docs","status-publish","hentry","knowledge_base-10npay"],"year_month":"2026-07","word_count":466,"total_views":0,"reactions":{"happy":0,"normal":0,"sad":0},"author_info":{"name":"","author_nicename":"","author_url":"https:\/\/developers.10npay.com\/bg\/author\/"},"doc_category_info":[],"doc_tag_info":[],"knowledge_base_info":[{"term_name":"10npay","term_url":"https:\/\/developers.10npay.com\/bg\/docs\/10npay\/","term_slug":"10npay"}],"knowledge_base_slug":["10npay"],"_links":{"self":[{"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/docs\/256","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/comments?post=256"}],"version-history":[{"count":0,"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/docs\/256\/revisions"}],"wp:attachment":[{"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/media?parent=256"}],"wp:term":[{"taxonomy":"doc_category","embeddable":true,"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/doc_category?post=256"},{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/doc_tag?post=256"},{"taxonomy":"knowledge_base","embeddable":true,"href":"https:\/\/developers.10npay.com\/bg\/wp-json\/wp\/v2\/knowledge_base?post=256"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}