Skip to main content

Client credential flow

Client credential flow is the most frequently used authentication method. It requires ClientID, ClientSecret and UserID of the signer. DigiCert​​®​​ provides you with a datasheet with ClientID and ClientSecret values. UserID is available at the end of the URL after the signer user creates their DigiCert ONE account.

Note

You are required to get an access token before the signing process in this flow. The access token is valid for one hour but can be extended by DigiCert​​®​​ up to 24 hours.

Authenticate with Client credential flow

To authenticate with Client credential flow:

  1. In DigiCert ONE (top right menu), select the person icon > Admin Profile.

  2. On the Admin page browser window address bar, copy the UserID at the end of the URL and save.

To set up Postman environment:

  1. In the Postman window, select Environments (left menu) > PDF Service 2.0 Environment.

  2. Define UserID.

    Enter your UserID in the “user_id” Variable Current Value field.

  3. Store variable values from datasheet.

    Enter the values from the Access section in the datasheet into the corresponding Current Value column as shown below:

    Variable

    Current Value

    client_id

    Client ID

    client_secret

    ClientSecret

  4. Select the Save icon (top right).

Note

The access token is valid for one hour but can be extended by DigiCert​​®​​ up to 24 hours.

  1. In the Postman window, select Collections (left menu) > PDF Service 2.0 > DTM CSC Credential List.

  2. In the right window, switch to the Authorization tab.

  3. Select Get New Access Token.

  4. In the new popup window, select Proceed.

  5. To apply access token, select Use Token.