Resource Owner Password Credentials

This authentication scheme is relatively simple and allows the application to log into the user’s system without using the browser by directly processing the username and password.

If an external Identity Provider is configured for a tenant, the Resource Owner Password Credentials authentication scheme will not work.

To obtain the access token, use the following:

A POST request.
The token endpoint. If your email address is connected to several accounts in different tenants and you use this authentication, use https://vantage-<region>.abbyy.com/auth2/{tenantId}/connect/token.
A Content-Type header with the application/x-www-form-urlencoded encoding.
A request body with the following parameters:

Parameter	Description
grant_type=password	Specifies that the password grant type is used.
scope=openid permissions global.wildcard	Specifies the permission scope.
username and password	Your credentials.
client_id	Application identifier.
client_secret	Secure application key.

Sample request (Windows):

curl --location --request POST "https://vantage-eu.abbyy.com/auth2/connect/token" \
  --data-urlencode "grant_type=password" \
  --data-urlencode "scope=openid permissions global.wildcard" \
  --data-urlencode "username=e-mail" \
  --data-urlencode "password=password" \
  --data-urlencode "client_id=client_id" \
  --data-urlencode "client_secret=client_secret"

Also available for other regions and Linux with equivalent commands. The server’s response to your request will contain the access token:

{
  "access_token": "<redacted>",
  "expires_in": 2592000,
  "token_type": "Bearer",
  "scope": "openid permissions global.wildcard"
}

For more information about Resource Owner Password Credentials, visit this link.

Getting Started

Output File Types

API Reference