> ## Documentation Index
> Fetch the complete documentation index at: https://docs.flinks.com/llms.txt
> Use this file to discover all available pages before exploring further.

# /Authorize

> Authorize and generate an access token.

Authorize with Flinks to obtain an `access_token` used for subsequent FlinksPay API calls. Pass your onboarding `Username` / `Password` with URL-encoded `grant_type=client_credentials`.

Tokens are time-limited (see `expires_in` in the response, default 299 seconds) and **single-use** — generate a new one for each session.

If you believe credentials have been compromised, contact Flinks to rotate them.

<Warning>
  <p class="h4">One token per session</p>

  A token can only initiate a single session. Call `/Authorize` again before each subsequent session.
</Warning>


## OpenAPI

````yaml /openapi-pay.yaml POST /api/v1/authorize
openapi: 3.0.3
info:
  title: Flinks API
  description: >
    Flinks API provides financial data connectivity, enrichment, and payment
    solutions.


    ## Authentication

    Endpoints require authentication using `flinks-auth-key` header (Bearer
    token).


    For more information, visit: https://docs.flinks.com
  version: 3.0.0
  contact:
    name: Flinks Support
    url: https://www.flinks.com/contact/sales
  termsOfService: https://www.flinks.com
servers:
  - url: https://www.{baseurl}.com
    description: Flinks Pay Production
    variables:
      baseurl:
        default: '{baseurl}'
        description: The base URI for the environment (e.g. flinks)
security: []
tags:
  - name: Authorization
    description: Endpoints for generating authorization tokens and authenticating requests
  - name: Enrich - Consumer Attributes
    description: Consumer financial attribute analysis and credit risk assessment
paths:
  /api/v1/authorize:
    post:
      tags:
        - Authorization
      summary: Authorize
      description: Authorize and generate an access token.
      operationId: authorize
      requestBody:
        content:
          application/x-www-form-urlencoded:
            schema:
              type: object
              properties:
                grant_type:
                  type: string
                  description: The type of grant (e.g., client_credentials).
                Username:
                  type: string
                  description: The username provided during onboarding.
                Password:
                  type: string
                  description: The password provided during onboarding.
              example: {}
      responses:
        '200':
          description: Result
          content:
            application/json:
              schema:
                type: object
                properties:
                  access_token:
                    type: string
                    description: The access token.
                  token_type:
                    type: string
                    description: The type of token.
                  expires_in:
                    type: integer
                    description: Expiration time in seconds.
        '400':
          description: Bad Request

````