For all backend operations, merchants will be required to be authorized towards Brite. This is done via a server to server API call. The authorization API call requires a public_key and a secret that will be provided by Brite. In the response the merchant will receive an access token that is to be used for future communication towards Brite, and a refresh_token that can be used to re-initialize an expiring access_token.
API Reference: api/merchant.authorize
Request:
{
"public_key": "<string>",
"secret": "<string>"
}
Response:
{
"access_token": "<string>",
"expires": 1652708597,
"refresh_token": "<string>"
}
Request Header
In following API calls content-type and authorization must be specified in the header.
content-type: application/json
authorization: Bearer <access_token>