---
description: The API supports the authorization code flow, which gets access tokens by securely redirecting users to the authorization server for authentication.
component: pingoneadvancedservices
page_id: pingoneadvancedservices:task_summary_table:p1as_platform_auth_flow
canonical_url: https://docs.pingidentity.com/pingoneadvancedservices/task_summary_table/p1as_platform_auth_flow.html
section_ids:
  authenticate-using-an-authorization-code-flow: Authenticate using an authorization code flow
  before-you-begin: Before you begin
  steps: Steps
  example: Example
---

### Authenticate using an authorization code flow

The API supports the authorization code flow, which gets access tokens by securely redirecting users to the authorization server for authentication.

#### Before you begin

After user accounts are created, you can assign the appropriate user access control roles and permissions. Users can then get an access token to use with API calls. Learn more about these roles and permissions in [User access control roles](p1as_platform_mng_admins.html#p1as_admin_role_mappings).

#### Steps

1. Go to the PingOne Advanced Services login URL:

   https\://self-service-api.\<environment>-\<customer>.\<region>.ping.cloud/api/v1/login/pingaccess

2. Enter your credentials and click **Submit**.

   If authentication is successful, you're redirected to the **Success** page and a **Copy Token** button displays.

3. Click **Copy Token**.

4. Query the API directly using tools such as Postman or cURL, and include the bearer token in the headers.

   #### Example

   ```
   {"Authorization": "Bearer {TOKEN}"}
   ```