Ensure you have an authorization server configured to
authenticate users and issue access tokens. For more information, see Configuring the OpenID provider.
To access the API with SSO
enabled:
Obtain an access token from the authorization server's response. This token
will authorize your API requests.
Tip:
The access token is a long string of characters and acts as your proof of
authorization to access the requested resources.
Include the access token in the API request's authorization header. The
API server will verify the
token's validity, authenticity, and scopes to ensure the necessary
permissions.
GET /api/resource HTTP/1.1
Host: pingcentral.example.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyLCJhdWQiOiJhcGkiLCJpc3MiOiJpc3N1ZXIifQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c