OAuth2.0 Integration Guide

Securely connect your application to Delphin's API using OAuth2.0 authentication flows.

Setup Client OAuth2 Docs

OAuth2 Flow Types

  • • Client Credentials
  • • Authorization Code
  • • Refresh Token
  • • Device Authorization

OAuth2.0 Authentication Flow

Client Credentials Flow

curl -X POST "https://api.delphin.io/oauth/token" \ -u "<CLIENT_ID>:<CLIENT_SECRET>" \ -d "grant_type=client_credentials"

Response

{ "access_token": "A1B2C3D4E5F6...", "token_type": "Bearer", "expires_in": 3600 }

Security Recommendations

Token Storage

Never store tokens in unencrypted files. Use secure secrets managers or encrypted caches.

Token Expiry

Short-lived tokens (1-2 hours) reduce risk of compromise. Use refresh tokens for long sessions.

Scope Control

Request only the permissions your application needs to operate. Avoid broad or elevated privileges unnecessarily.

Client Setup Instructions

1. Register Client

  1. • Go to Developer Dashboard
  2. • Create new OAuth client
  3. • Set redirect URIs
  4. • Define scopes

2. Get Credentials

  • • Store client ID and secret securely
  • • Generate access tokens with
    grant_type=client_credentials
  • • Test authentication flow in
    Test Sandbox

3. Integrate API

Set Authorization: Bearer <token> header
for all API requests after authentication

HTTP/1.1 GET /api/v1/analyze Authorization: Bearer A1B2C3D4E5F6... Accept: application/json

Need Help with OAuth?

Our team can help configure your OAuth2.0 integration and ensure your implementation meets security best practices.

Contact Support View Reference Docs