Submitting API Requests Using OAuth

You can submit API requests on behalf of the merchant using the access token. The access token expires after fifteen minutes.

Place the access token in an

Authorization

header as shown below.

Not all API endpoints are currently enabled for OAuth. For a list of OAuth-enabled endpoints, contact us .

Authorization: Bearer eyJraWQiOiIyNmRjfjVkZTdlMmYwYTI0ODg0MjU1YjIwZWJjMGY0MSIsImFs

curl -X POST -H "Authorization: Bearer ACCESS_TOKEN""https://api-ma.cybersource.com/pts/v2/payments"

Error Response

If the token is expired or the user is unauthorized, the API returns a 401 HTTP status code.
Expired Token

      {
  "response": {
    "rmsg": {
      "error":"ACCESS_TOKEN_EXPIRED",
      "error_description":"ACCESS_TOKEN_EXPIRED
    }
  }
}

Unauthorized Partner

      {
  "response": {
    "rmsg": {
      "error": "UNAUTHORIZED_PARTNER",
      "error_description": "UNAUTHORIZED_PARTNER"
    }
  }
}