Clients
Before making a request to the Merchant API, you must generate your OAuth2 Client ID and Client Secret in the Business Portal.- Log in to the Business Portal.
- Click on the API Keys tab in the left sidebar.
- Click on the Create API Key button.
- Enter a name for your API key and click Save.
- Copy the Client Secret value from the Your Secret modal and store it securely. You will not be able to view this value again.
- Copy the Client Secret value and store it securely. You will not be able to view this value again. Click to close the modal containing the secret.
- Copy the Client ID value from the list of API Keys corresponding to the key you just created. You will need this value to authenticate your requests.
x-supertab-client-id
header containing your client id with every request.
Obtaining a Token
The Merchant API uses OAuth2 Client Credentials Grant to authenticate requests. To obtain a token, you must send a POST request to the token URL with your client id and secret, using theclient_secret_basic
method.
API Settings
Base URL | https://tapi.supertab.co/mapi/ |
Supported Grants | Client Credentials |
Token URL | https://auth.supertab.co/oauth2/token |
Token Type | bearer |
Scopes
The Merchant API is scoped to allow issuing tokens with minimum permissions. The api specification details the required scopes for each operation. You must request a token with the scopes you require when authenticating the customer. The following scopes are available:mapi:write
: Create onetime offeringsmapi:read
: Check the status of purchases