Skip to main content
POST
/
v3
/
{customerId}
/
BankingServices
/
GenerateAuthorizeToken
Generate Authorize Token
curl --request POST \
  --url https://{instance}-api.private.fin.ag/v3/{customerId}/BankingServices/GenerateAuthorizeToken \
  --header 'Accept: <accept>' \
  --header 'Content-Type: <content-type>'
{
  "HttpStatusCode": 200,
  "Token": "d65f1adb-8ebc-48dc-be8b-20c773ba1565"
}
The Authorize Token expires if it’s not used within 30 minutes. If your Authorize Token expires, you must call this endpoint again to obtain a new one.

Prerequisites

  • A secret key provided by Flinks during integration setup
  • Access to your environment instance (e.g., toolbox, sandbox, or production)

Common Issues & Troubleshooting

For detailed troubleshooting of authentication errors, token issues, and URL formatting problems, see Authentication Troubleshooting.

Next Steps

After generating an authorize token, use it to authenticate:
  • Flinks Connect: Add authorizeToken={token} parameter to your iframe URL
  • Direct API: Pass token as flinks-auth-key header when calling /Authorize
See Set Up Authorization for complete integration examples.

Headers

flinks-auth-key
string
default:c4569c54-e167-4d34-8de6-f4113bc82414

The Bearer Token (API secret key).

Example:

"c4569c54-e167-4d34-8de6-f4113bc82414"

Content-Type
string
default:application/json
required

Content type of the request.

Accept
string
default:application/json
required

Acceptable response media type.

Path Parameters

customerId
string
default:43387ca6-0391-4c82-857d-70d95f087ecb
required

Unique GUID provided by Flinks that grants you access to the environment specified in the instance field.

Response

Success

HttpStatusCode
integer
Token
string