Exchange API key for access token
Exchanges a developer API key and secret for a short-lived machine JWT. Send credentials via X-Fluide-Api-Key, X-Fluide-Api-Secret, and X-Fluide-Client-Id: fluide-developer headers. Use the secret only on this route — never on product APIs. See Authorization.
Authorizations
Developer API key (fl_dev_...). Required on every API call with a machine access token.
API secret used only during token exchange. Never send on product routes.
First-party client audience. Must match the fluide_client_id claim on the JWT. Use fluide-developer for Connect.
Headers
Developer API key (fl_dev_...).
API secret — use only on this route, never on product APIs.
Must be fluide-developer for Connect integrations.
Partner / ISV only: UUID of the workspace that owns the client company. Required together with X-Acting-Company-Id when scoping product APIs to a merchant. See /getting-started/multi-tenancy.
Partner / ISV only: UUID of the client company to act on. Must belong to the workspace in X-Workspace-Id.