Generate bearer tokens for usage with the Customer API
Authorization
header unless stated otherwise.
Additionally, all calls to the Customer API must also include the x-supertab-client-id
header with your client id (see Clients for more information), and a version header.
Supertab uses OAuth2 to issue JWT tokens. After your customer authenticates you will be able to take actions, such as purchasing, on their behalf.
Instead of implementing OAuth2 yourself, you should consider using an existing library, or (recommended) make use of
Supertab.js to authenticate users and obtain tokens.
Example authenticated request to the Customer API:
x-supertab-client-id
header with every request containing your client id.
The client id is used by the Customer API to determine which site the request is for, and whether the request is in test or live mode.
Base URL | https://tapi.supertab.co/capi/ |
Supported Grants | Authorization Code + PKCE , Refresh Token |
Authentication URL | https://auth.supertab.co/oauth2/auth |
Token URL | https://auth.supertab.co/oauth2/token |
Token Type | bearer |
capi:read
: Make purchases and take other actions that modify a customer account.capi:write
: Check for entitlements and take other actions the retrieve a customer’s details.