Access Token

curl --request POST \
  --url https://api-sandbox.uqpaytech.com/api/v1/connect/token \
  --header 'x-api-key: <api-key>' \
  --header 'x-client-id: <api-key>'

{
  "auth_token": "2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA",
  "expired_at": 1757449854
}

Authentication

Access Token

Request an access token by specifying your x-client-id and x-api-key in the HTTP request header. The token returned is required for calling all other API endpoints, which HTTP header must include x-auth-token: <YOUR_TOKEN_HERE>.

The access token can be used multiple times for all other API endpoints until it expires. It’s recommended to rely on expired_at for the accurate token expiration time.

auth_token is valid for 30 minutes in Production.

POST

connect

token

Access Token

curl --request POST \
  --url https://api-sandbox.uqpaytech.com/api/v1/connect/token \
  --header 'x-api-key: <api-key>' \
  --header 'x-client-id: <api-key>'

{
  "auth_token": "2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA",
  "expired_at": 1757449854
}

Authorizations

x-api-key

string

header

required

The API key generated by UQPAY.

x-client-id

string

header

required

The API client id generated by UQPAY.

Response

Successfully.

auth_token

string

required

Returned authentication token. Clients must store this securely and destroy it when it is no longer needed.

Example:

"2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA2YotnFZFEjr1zCsicMWpAA"

expired_at

integer

required

Expiration time represented as a Unix timestamp in second-level precision. Indicates the point in time after which the token becomes invalid.

Example:

1757449854

Create sub account

Authentication

Account Center

Supporting Services

Simulator

Access Token

Authorizations

Response