Authentication

The Partner API uses the OAuth 2.0 client credentials flow for authentication. To get started, you will need to request a client_id and client_secret from the SKChase team. When making your request, be sure to specify the permissions your API user requires, including which venues it should have access to.

Once you have your credentials, you can obtain an access token by making a POST request to the appropriate token endpoint:

Production: https://p5.skchase.com/giftapp/oauth/token
Staging: https://p5.skchase-staging.com/giftapp/oauth/token

The access token is valid for one hour and must be included in the Authorization header of all subsequent API requests as a Bearer token.

Example Request

curl -X POST \
  https://p5.skchase.com/giftapp/oauth/token \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -d 'grant_type=client_credentials&client_id=YOUR_CLIENT_ID&client_secret=YOUR_CLIENT_SECRET'

Important

Make sure that the client_id and client_secret values are URL-encoded, as otherwise authentication might fail.

Example Response

{
  "access_token": "YOUR_ACCESS_TOKEN",
  "token_type": "Bearer",
  "expires_in": 3600
}

Example Request​

Example Response​

Example Request

Example Response