# Obtain JWT Token

Authenticates your application and returns a short-lived JWT token.

Provide the clientId and clientSecret credentials issued by ConnectPSP during onboarding.
The returned accessToken must be sent in all subsequent requests as:

Authorization: Bearer

Endpoint: POST /auth/token
Version: 2.0.0
Security: 

## Request fields (application/json):

  - `clientId` (string, required)
    Your numeric client ID provided by ConnectPSP during onboarding.
    Example: "YOUR_CLIENT_ID"

  - `clientSecret` (string, required)
    Your secret GUID credential provided by ConnectPSP during onboarding.
    Example: "YOUR_CLIENT_SECRET"

## Response 200 fields (application/json):

  - `accessToken` (string)
    JWT token to use in all subsequent requests.
    Example: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."

  - `tokenType` (string)
    Always Bearer.
    Example: "Bearer"

  - `expiresIn` (integer)
    Token lifetime in seconds.
    Example: 3600

  - `issuedAt` (string)
    Token issuance timestamp (ISO 8601).
    Example: "2026-03-10T14:00:00Z"


## Response 401 fields