Cliquify Developer
  1. Authentication
  • Overview
    • Get started
  • Authentication
    • Token lifecycle
    • OAuth scopes
    • Get an access token
      POST
    • Introspect a token
      POST
    • Revoke a token
      POST
  • API Reference
    • Templates
      • Tags
        • List brand tags
      • List templates
    • Assets
      • Folders
        • List folder
      • List assets
      • List asset tags
    • Brand Kit
      • List brand kit
      • List brand kit logos
      • List brand kit colors
    • Troubleshoot
      • Errors and troubleshooting
  1. Authentication

Token lifecycle

Lifetime#

Use the expires_in value from the token response to determine how long the token remains valid. (Default lifetime is 30 days)

Refresh tokens#

Refresh tokens are not issued for the client credentials flow documented here. When a token expires, request a new one using the same client_id and client_secret.

Rotation#

You can revoke older tokens with POST /oauth/revoke during credential rotation or service shutdown.

Clock skew#

For long-running jobs, renew tokens slightly before the exact expiration time to avoid borderline 401 failures.
Modified at 2026-04-09 13:32:50
Previous
Get started
Next
OAuth scopes
Built with