{"title":"OAuth","category":"default","creationDate":1776961629,"content":"<p>OAuth is an open protocol we use to let your customers delegate API access to you. OAuth is only available for partners. If you <a href=\"\/pt\/partners\/oauth\/integration\">integrate with our OAuth service<\/a>, you can make API requests on your customer's behalf, without your customer having to share their credentials with you.<\/p>\n<p>When you request access to your customer's account, you specify a <a href=\"\/pt\/partners\/oauth\/scopes\">scope<\/a>. Your customer then confirms the scope. This way, you only have access to the resources in your customer's account that you need to access, enhancing security and customer trust.<\/p>\n<p>Integrating with our OAuth service lets you process online payments on your customer's behalf on your ecommerce platform.<\/p>\n<h2>How it works<\/h2>\n<p>An OAuth flow involves the following parties:<\/p>\n<ul>\n<li><strong>Resource owner<\/strong>: your customer, who grants you access to their account resources.<\/li>\n<li><strong>Resource server<\/strong>: Adyen's APIs, through which you access your customer's account resources.<\/li>\n<li><strong>Client<\/strong>: your application which requests access to resources on behalf of your customer.<\/li>\n<li><strong>Authorization Server<\/strong>: Adyen's OAuth server, where your customer authenticates to grant you access. This server is also responsible for issuing the access tokens.<\/li>\n<\/ul>\n<p>During an OAuth flow, the parties interact as follows:<\/p>\n<ol>\n<li>Your customer selects the <strong>Connect with Adyen<\/strong> button in your application.<\/li>\n<li>You redirect your customer to Adyen where they authenticate and authorize your request to access their resources.<\/li>\n<li>Your customer is redirected back to your application with an authorization code.<\/li>\n<li>You exchange the authorization code for access and refresh tokens.<\/li>\n<li>When you make requests to Adyen's APIs on behalf of your customer, you authorize using the access token.<\/li>\n<li>When your access token expires, you get a new one using the refresh token.<\/li>\n<\/ol>\n<p><img alt=\"OAuth integration\" src=\"\/user\/pages\/docs\/14.partners\/26.oauth\/OAuth-integration.svg?decoding=auto&amp;fetchpriority=auto\" \/><\/p>\n<h2>Next steps<\/h2>\n<p>To start building your OAuth integration, select our integration guide below:<\/p>\n<style>\n    .fingerpost__link img.icon {\n        padding: 24px 24px 0 0;\n        margin-bottom: 12px;\n        margin-top: -24px;\n    }\n<\/style>\n<div class=\"fingerpost output-inline\">\n<a href=\"\/partners\/oauth\/integration\" class=\"fingerpost__link fingerpost__link--large\" style=\"overflow:hidden;\" target=\"_self\"><div class=\"fingerpost__body\"><img src=\"\/user\/themes\/adyen\/images\/illustrations\/wrench.svg\"><p><span style=\"font-size: 20px;\"><strong>OAuth integration<\/strong><\/span><br>\nIntegrate with our OAuth service to make API request on your customer's behalf.<\/p><\/div><\/a><\/div>\n","url":"https:\/\/docs.adyen.com\/pt\/partners\/oauth","articleFields":{"description":"Securely authorize API requests on behalf of your customers","feedback_component":true,"robots":"noindex,nofollow"},"algolia":{"url":"https:\/\/docs.adyen.com\/pt\/partners\/oauth","title":"OAuth","content":"OAuth is an open protocol we use to let your customers delegate API access to you. OAuth is only available for partners. If you integrate with our OAuth service, you can make API requests on your customer's behalf, without your customer having to share their credentials with you.\nWhen you request access to your customer's account, you specify a scope. Your customer then confirms the scope. This way, you only have access to the resources in your customer's account that you need to access, enhancing security and customer trust.\nIntegrating with our OAuth service lets you process online payments on your customer's behalf on your ecommerce platform.\nHow it works\nAn OAuth flow involves the following parties:\n\nResource owner: your customer, who grants you access to their account resources.\nResource server: Adyen's APIs, through which you access your customer's account resources.\nClient: your application which requests access to resources on behalf of your customer.\nAuthorization Server: Adyen's OAuth server, where your customer authenticates to grant you access. This server is also responsible for issuing the access tokens.\n\nDuring an OAuth flow, the parties interact as follows:\n\nYour customer selects the Connect with Adyen button in your application.\nYou redirect your customer to Adyen where they authenticate and authorize your request to access their resources.\nYour customer is redirected back to your application with an authorization code.\nYou exchange the authorization code for access and refresh tokens.\nWhen you make requests to Adyen's APIs on behalf of your customer, you authorize using the access token.\nWhen your access token expires, you get a new one using the refresh token.\n\n\nNext steps\nTo start building your OAuth integration, select our integration guide below:\n\n    .fingerpost__link img.icon {\n        padding: 24px 24px 0 0;\n        margin-bottom: 12px;\n        margin-top: -24px;\n    }\n\n\nOAuth integration\nIntegrate with our OAuth service to make API request on your customer's behalf.\n","type":"page","locale":"pt","boost":18,"hierarchy":{"lvl0":"Home","lvl1":"Partners","lvl2":"OAuth"},"hierarchy_url":{"lvl0":"https:\/\/docs.adyen.com\/pt","lvl1":"https:\/\/docs.adyen.com\/pt\/partners","lvl2":"\/pt\/partners\/oauth"},"levels":3,"category":"","category_color":"","tags":["OAuth"]},"articleFiles":{"OAuth-integration.svg":"<img alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/14.partners\/26.oauth\/OAuth-integration.svg?decoding=auto&amp;fetchpriority=auto\" \/>"}}