Poll for the result of a client grant

POST

auth

grant

token

Poll for the result of a client grant

curl --request POST \
  --url https://app.dynamicauth.com/api/v0/auth/grant/token \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "grant_code": "<string>"
}
'

{
  "status": "authorization_pending",
  "jwt": "<string>",
  "token_type": "<string>"
}

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Body

application/json

Request body for POST /auth/grant/token.

grant_code

string

required

Response

Current grant state. See status for details.

Response from POST /auth/grant/token. The status field follows RFC 8628's "error-via-200" convention so the client can branch its polling loop on status without interpreting HTTP error codes.

status

enum<string>

required

Current state of the grant.

Available options:

authorization_pending,

approved,

access_denied,

expired_token,

slow_down

jwt

string

The minted client JWT. Present only when status === "approved".

token_type

string

Always bearer when a token is returned.

Read public-safe metadata about a pending grantUsed by the dashboard authorize page to render `Authorize {clientName}?` before the user clicks Approve. Requires the dashboard user to be authenticated. Does NOT return the `grant_code` — only the metadata that's safe to display in a logged-in browser.

⌘I

Poll for the result of a client grant

curl --request POST \
  --url https://app.dynamicauth.com/api/v0/auth/grant/token \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "grant_code": "<string>"
}
'

{
  "status": "authorization_pending",
  "jwt": "<string>",
  "token_type": "<string>"
}

Overview

Endpoints

Schemas

Poll for the result of a client grant

Authorizations

Body

Response

Overview

Endpoints

Schemas

Documentation Index

Authorizations

Body

Response