Valu8 API uses JWT authentication. You will need to generate an access token and provide it as an HTTP header with your requests. To generate an access token you need a valid username and password.
The endpoint /authentication will generate a access token and a refresh token. The expiration time for the access token is 90 days.
Your Access token are used in all future API-calls in the other endpoints (eg. companies-, relations-endpoint etc.)
Refresh token are only used in the endpoint /authentication/refresh-token to renew the access token.
You can create as many acesstoken and refreshtoken pairs as you need and use them independently of each other. They will all remain valid until expiration date. A usecase for that you might want to do that is if you want to use valu8's data in multiple production enviroments that works independently of each other.
Renew accesstoken
To renew an accesstoken , do a request to endpoint authentication/refresh-token and apply current accesstoken and refreshtoken. That will revoke only that specific accesstoken and refreshtoken pair and return a new pair.