Skip to main content
POST
/
api
/
auth
/
token
curl -X POST 'https://crypto-api.yativo.com/api/auth/token' \
  -H 'Content-Type: application/json' \
  -d '{
    "api_key": "yativo_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
    "api_secret": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
  }'

{
  "success": true,
  "access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "token_type": "Bearer",
  "expires_in": 3600,
  "expires_at": "2026-03-28T11:00:00.000Z",
  "scopes": ["read", "write", "transactions"],
  "refresh_recommendation": {
    "refresh_before_seconds": 300,
    "auto_refresh_enabled": true
  }
}
API keys never expire, but API calls require a Bearer token. Use this endpoint to mint a fresh token from your API key credentials. Tokens are valid for 60 minutes — call this endpoint again to get a new one.
api_key
string
required
Your API key (starts with yativo_). Obtained when you created the key.
api_secret
string
required
Your API secret. Shown only once at key creation — store it securely.
This endpoint does not require an Authorization header — use it to bootstrap your authentication.
curl -X POST 'https://crypto-api.yativo.com/api/auth/token' \
  -H 'Content-Type: application/json' \
  -d '{
    "api_key": "yativo_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
    "api_secret": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
  }'

{
  "success": true,
  "access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "token_type": "Bearer",
  "expires_in": 3600,
  "expires_at": "2026-03-28T11:00:00.000Z",
  "scopes": ["read", "write", "transactions"],
  "refresh_recommendation": {
    "refresh_before_seconds": 300,
    "auto_refresh_enabled": true
  }
}