> ## Documentation Index > Fetch the complete documentation index at: https://docs.abbyy.com/llms.txt > Use this file to discover all available pages before exploring further. # Resource Owner Password Credentials > Use the OAuth 2.0 Resource Owner Password Credentials flow to authenticate to the ABBYY Vantage API directly with a username and password (no browser). export const VantageRegion = ({children}) => { const STORAGE_KEY = "abbyy.vantage.region"; const REGIONS = [{ code: "eu", label: "Europe" }, { code: "us", label: "North America" }, { code: "au", label: "Australia / Asia-Pacific" }]; const [region, setRegion] = useState("eu"); const [open, setOpen] = useState(false); const containerRef = useRef(null); const dropdownRef = useRef(null); function safeGetSavedRegion() { try { const saved = typeof window !== "undefined" ? window.localStorage.getItem(STORAGE_KEY) : null; const valid = new Set(REGIONS.map(r => r.code)); return saved && valid.has(saved) ? saved : "eu"; } catch { return "eu"; } } function safeSetSavedRegion(code) { try { if (typeof window !== "undefined") { window.localStorage.setItem(STORAGE_KEY, code); } } catch {} } function dispatchRegionChanged(code) { try { if (typeof window !== "undefined") { window.dispatchEvent(new CustomEvent("abbyy:region-changed", { detail: { code } })); } } catch {} } function replaceRegionInString(text, currentRegion) { if (typeof text !== "string") return text; const hostRegex = /https:\/\/vantage-(eu|us|au)\.abbyy\.com/gi; const tokenRegex = /https:\/\/vantage-\[region\]\.abbyy\.com/gi; return text.replace(hostRegex, `https://vantage-${currentRegion}.abbyy.com`).replace(tokenRegex, `https://vantage-${currentRegion}.abbyy.com`); } useEffect(() => { setRegion(safeGetSavedRegion()); }, []); useEffect(() => { const root = containerRef.current; if (!root) return; const anchors = root.querySelectorAll("a[href]"); anchors.forEach(a => { const href = a.getAttribute("href"); if (href) { const next = replaceRegionInString(href, region); if (next !== href) { a.setAttribute("href", next); } } }); const walker = typeof document !== "undefined" ? document.createTreeWalker(root, NodeFilter.SHOW_TEXT, null) : null; if (walker) { const toUpdate = []; let node = walker.nextNode(); while (node) { const updated = replaceRegionInString(node.nodeValue, region); if (updated !== node.nodeValue) { toUpdate.push([node, updated]); } node = walker.nextNode(); } toUpdate.forEach(([textNode, value]) => { textNode.nodeValue = value; }); } }, [region, children]); useEffect(() => { const root = containerRef.current; if (!root) return; const anchors = root.querySelectorAll("a[href]"); anchors.forEach(a => { a.style.fontWeight = "600"; a.style.textDecoration = "underline"; a.style.textUnderlineOffset = "2px"; }); }, [region, children]); useEffect(() => { const onRegionChanged = evt => { const code = evt && evt.detail && evt.detail.code; if (!code || code === region) return; setRegion(code); }; if (typeof window !== "undefined") { window.addEventListener("abbyy:region-changed", onRegionChanged); } return () => { if (typeof window !== "undefined") { window.removeEventListener("abbyy:region-changed", onRegionChanged); } }; }, [region]); useEffect(() => { const onClickAway = e => { if (!dropdownRef.current) return; if (!dropdownRef.current.contains(e.target)) { setOpen(false); } }; document.addEventListener("click", onClickAway, true); return () => document.removeEventListener("click", onClickAway, true); }, []); const onSelect = code => { setRegion(code); safeSetSavedRegion(code); dispatchRegionChanged(code); setOpen(false); }; const current = REGIONS.find(r => r.code === region) || REGIONS[0]; return
Tenant Region:
{open ?
{REGIONS.map(r => { const selected = r.code === region; return ; })}
: null}
{children}
; }; This authentication scheme is relatively simple and allows the application to log into the user's system without using the browser by directly processing the username and password. If an external Identity Provider is configured for a tenant, the Resource Owner Password Credentials authentication scheme will not work. To obtain the access token, use the following: 1. A POST request. 2. The token endpoint. If your email address is connected to several accounts in different tenants and you use this authentication, use `https://vantage-.abbyy.com/auth2/{tenantId}/connect/token`. The `https://vantage-.abbyy.com/auth` resource is deprecated. 3. A `Content-Type` header with the `application/x-www-form-urlencoded` encoding. 4. A request body with the following parameters: | Parameter | Description | | ---------------------------------------- | ----------------------------------------------- | | grant\_type=password | Specifies that the password grant type is used. | | scope=openid permissions global.wildcard | Specifies the permission scope. | | username and password | Your credentials. | | client\_id | Application identifier. | | client\_secret | Secure application key. | Sample request: For Windows: ```shell theme={null} curl --location --request POST "https://vantage-us.abbyy.com/auth2/connect/token" \ --data-urlencode "grant_type=password" \ --data-urlencode "scope=openid permissions global.wildcard" \ --data-urlencode "username=e-mail" \ --data-urlencode "password=password" \ --data-urlencode "client_id=client_id" \ --data-urlencode "client_secret=client_secret" ``` For Linux: ```shell theme={null} curl --location --request POST 'https://vantage-us.abbyy.com/auth2/connect/token' \ --data-urlencode 'grant_type=password' \ --data-urlencode 'scope=openid permissions global.wildcard' \ --data-urlencode 'username=e-mail' \ --data-urlencode 'password=password' \ --data-urlencode 'client_id=client_id' \ --data-urlencode 'client_secret=client_secret' ``` The server's response to your request will contain the access token: ```json theme={null} { "access_token": "", "expires_in": 2592000, "token_type": "Bearer", "scope": "openid permissions global.wildcard" } ``` For more information about Resource Owner Password Credentials, visit [this link](https://datatracker.ietf.org/doc/html/rfc6749#section-4.3).