Skip to main content

For a desktop application

Authentication for a desktop application is done as follows:

  1. Redirect a customer to the, with the following parameters in the query string: client_id - Your application client_idresponse_type - A text token should be always passed in this parameter scope - A text corp should be always passed in this parameter redirect_uri – A redirect Uri of your application kc_locale – An interface language. ka should be passed for the Georgian language. Without passing this parameter an English interface will appear.

For example, if a client id of your application is implicitclient and a redirect Uri is, the address will have the following format (after URL encoding):

  1. A customer will be redirected to the redirect_uri address, with the following parameters in the query string:

    • access_token - A temporary token
    • expires_in - An expiration time
    • token_type - A token type
  2. Authenticate using HTTP Basic Auth. On requesting the service, a Bearer Token is returned, which is used as an authentication parameter for calling the following methods.



Authorization requiredstring

authentication using the HTTP Basic Auth. Use your application client_id as a user and a client_secret of your application as a password.



A text client_credentials should be always passed in this parameter.


A temporary code


Your application redirect_uri



A token returned by the authorization server.


A token type (A text value bearer being returned)


Not used.


A number of seconds during which a token is active.


The maximum time before a refresh token is expired and invalidated. It allows for the specification of a shorter timeout of refresh token than the session timeout.


If an access token or refresh token is compromised, access the Admin Console and push a not-before revocation policy to all applications. Pushing a not-before policy ensures that any tokens issued before that time become invalid.


A standard OAuth 2.0 authorization mechanism. A context in which a Token is valid.