Authentication

Acquiring an access token from our Identity Server

We have recently updated our Identity Server, meaning that authentication requests are a little different. Specifically:
- the Identity server URL is now https://id4.ximble.com/connect/token
- scope parameter has to be lowercase "ximbleapi" string
- Access token expires after 1 hour.

Every request to the Paycor Scheduling API must include an access token in the request header. These tokens need to be requested through authentication with our Identity Server, and are currently valid for one hour.

To retrieve the ACCESS_TOKEN, use the following endpoint:

$.ajax({
  type: 'POST',
  data: {
				"scope":"ximbleapi",
        "grant_type":"Partner",
        "AuthToken":API_Key,
    		"response_type": "token"
         },
  url: 'https://id4.ximble.com/connect/token',
  async: false,
  headers: {
    Authorization: "Basic " + CLIENT_TOKEN,
    Content-Type: "application/x-www-form-urlencoded"
  },
  success: function(data) { 
  $("#ajax").html(data); 
  }
  
});
{
  "access_token": ACCESS_TOKEN,
  "expires_in": 720000,
  "token_type": "Bearer"
}