For Access Magento 2 REST API, you need to first generate an access token. Access token used for synchronization with Magento to another third-party platform.
Without Access token, you can’t communicate with Magento 2. For Create access token you need to call POST action with Request payload. Your request URL will be rest/V1/integration/admin/token append to your site URL.
Pass Username and password in request body of Magento backend to generate the Access token.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 | <?php $url = "http://127.0.0.1/magento2/index.php/rest"; $token_url = $url."/V1/integration/admin/token"; $username = "admin"; $password = "admin123"; //Authentication rest API magento2, For get access token $ch = curl_init(); $data = array("username" => $username, "password" => $password); $data_string = json_encode($data); $ch = curl_init(); curl_setopt($ch,CURLOPT_URL, $token_url); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "POST"); curl_setopt($ch, CURLOPT_POSTFIELDS, $data_string); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json')); $token = curl_exec($ch); $accessToken = json_decode($token); echo $accessToken; |
After successfully call with Magento 2, You can get response as a string with Access Token. You can use access token with any Magento 2 REST API call with “Bearer $accessToken”
Output:
qhkk60btde5681tfvvhd921sw2051t02
You can Use the token in a Web API request as below,
Authorization: Bearer <access token>
Where Replace <access token> token with your actual access token.
How do we get refresh token once its about to expire? By default this is set to 1 hour and suppose if the user who is browsing on the site stays more than a hour this will kick them out. So am looking for refresh token functionality in Magento 2 without adjusting the token expiry time.