PKCE token exchange

curl --request POST \ --url http://co-mind-platform-host/v1/services/token/exchange \ --header 'Authorization: Bearer <token>' \ --header 'Content-Type: application/json' \ --data ' { "code": "<string>", "redirect_uri": "<string>", "code_verifier": "<string>" } '

{ "access_token": "<string>", "refresh_token": "<string>", "token_type": "bearer", "expires_in": 3600, "user": { "id": "user_abc123", "email": "user@example.com", "username": "johndoe", "confirmed": true, "created_at": "2023-11-07T05:31:56Z" } }

Authorizations

Authorization

string

header

required

Bearer token authentication. Supports two token types:

JWT Access Token — obtained via POST /v1/auth/login
Personal Access Token (PAT) — created via POST /v1/api-tokens, format: cmnd_<tokenId>.<secret>

Body

application/json

code

string

required

redirect_uri

string

required

code_verifier

string

required

Response

Token exchange successful

access_token

string

JWT access token (use for API requests)

refresh_token

string

Refresh token (use to get new access token)

token_type

string

Example:

"bearer"

expires_in

integer

Access token expiry in seconds

Example:

3600

user

object

Show child attributes

API Reference

Public

Authentication

API Tokens

Chat

Knowledge Base

Completions

Embeddings

Discovery

Echo Engine

Echo Engine - Recordings

Echo Engine - TTS

Sanitizer Admin

Quota

Document Analyzer

Researcher

Directory Admin

Entra Admin

Tenant Admin

Tenant API Keys

Sub-org Management

Service Endpoints

Audit Logs

Authorizations

Body

Response