Cliquify Developer
  1. Authentication
  • Overview
    • Getting started
  • other
    • Integrations
    • Appendix
      • OAuth Scopes
      • Error Responses
    • Templates
      • Get Tags
      • Get Templates
    • User
      • Get Authenticated User
    • Authentication
      • Overview
      • Generate Access Token
      • Introspect Access Token
      • Revoke Token
    • Get Brand Assets
      GET
  • Authentication
    • Overview
    • Token lifecycle
    • OAuth scopes
    • Get an access token
      POST
    • Introspect a token
      POST
    • Revoke a token
      POST
  1. Authentication

Token lifecycle

Lifetime#

Use the expires_in value from the token response to determine how long the token remains valid.

Refresh tokens#

Refresh tokens are not issued for the client credentials flow documented here. When a token expires, request a new one using the same client_id and client_secret.

Rotation#

You can revoke older tokens with POST /oauth/revoke during credential rotation or service shutdown.

Clock skew#

For long-running jobs, renew tokens slightly before the exact expiration time to avoid borderline 401 failures.
Modified at 2026-04-09 07:41:00
Previous
Overview
Next
OAuth scopes
Built with