Home Forums The XBRL API Authenticating before every request?

This topic contains 1 reply, has 2 voices, and was last updated by  David Tauriello 1 year, 2 months ago.

  • Author
  • #114364

    Jim Truscott

    If I just post an authentication request before every data request, saves me having to write a bunch of code the check whether the access token is still valid. Any problems with that?

    Refresh token would save me having send to username and password again but I still have to submit a sensitive client secret so not sure what that gains me?

  • #114898

    David Tauriello

    It would be best if you include code to check whether the token is valid instead of requesting a new token for each request – if you’ve got several calls and each requests a new token, you’ll bottleneck your returns and might impact others who are requesting resources.

    Each token has a lifetime of an hour, after which you can use the refresh token to request a new access token.

You must be logged in to reply to this topic.