Authentication

Create a Bearer token using your Email and AccessToken, then use it to authenticate all other API requests.

Engage2Reward™ Gift Card API uses a simple two-step authentication flow. First, exchange your credentials for a token. Then send that token in the Authorization header for all subsequent requests.

Step 1: Create a token

Make a request to the Tokens endpoint using your Email and AccessToken headers.

POST /v1/Tokens

cURL

curl -X POST "BASE_URL/v1/Tokens" \
  -H "Email: EMAIL" \
  -H "AccessToken: ACCESS_TOKEN"

Token response

The response includes a token value and an expiration period.

JSON

{
  "Value": "eyJhbGciOi...",
  "ExpiresIn": 3600
}

Step 2: Use the Bearer token

Include the token in the Authorization header for all authenticated requests.

HTTP Header

Authorization: Bearer YOUR_TOKEN

Tip: Reuse the same Bearer token until it expires instead of requesting a new one for every API call.

Common issues

401 Unauthorized: Missing or invalid Bearer token
403 Forbidden: API access disabled for the credential set
504 Timeout: Retry the request safely

Step 1: Create a token

Token response

Step 2: Use the Bearer token

Common issues

What’s next