> ## Documentation Index
> Fetch the complete documentation index at: https://paytectechnologies.mintlify.site/llms.txt
> Use this file to discover all available pages before exploring further.

# Issue an access token

> Exchanges integrator client credentials for a bearer access token. Public
(no bearer required). Proxies the Zeam Auth Service token endpoint.




## OpenAPI

````yaml /api-reference/openapi.yaml post /auth/token
openapi: 3.1.0
info:
  title: Zeam API Gateway
  version: 1.0.0
  description: >
    The Zeam API Gateway is the single, REST-based external surface for
    registered

    integrators. Every protected request carries a bearer access token (issued
    by the

    Zeam Auth Service) plus the application secret header `x-zeam-auth`. The
    gateway

    verifies the token, resolves the caller's association, and
    proxies/orchestrates the

    underlying Zeam services. Errors use RFC 7807 `application/problem+json`.
  license:
    name: Proprietary
    url: https://zeam.app
  contact:
    name: Zeam Platform Team
    url: https://zeam.app
servers:
  - url: https://api.zeam.app/v1
    description: Production
  - url: https://api.dev.zeam.paytec.io/v1
    description: Development
security:
  - BearerAuth: []
    ZeamAuth: []
tags:
  - name: Auth
    description: Public token issuance.
  - name: Wallets
    description: Association wallets, balances, and transactions.
  - name: Beneficiaries
    description: Association beneficiaries.
  - name: Connectors
    description: Connector discovery (Connect, surfaced as REST).
  - name: Quotes
    description: Connect quotes.
  - name: Intents
    description: Transaction intent initiation and state.
  - name: Payments
    description: Payment intent execution via Hydra.
  - name: Webhooks
    description: Association webhook registrations.
paths:
  /auth/token:
    post:
      tags:
        - Auth
      summary: Issue an access token
      description: >
        Exchanges integrator client credentials for a bearer access token.
        Public

        (no bearer required). Proxies the Zeam Auth Service token endpoint.
      operationId: issueToken
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/TokenRequest'
            example:
              clientId: 11111111-1111-1111-1111-111111111111
              clientSecret: s3cr3t-value
      responses:
        '200':
          description: Token issued.
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/TokenResponse'
              example:
                accessToken: eyJ0eXAiOiJKV1Qi...
                tokenType: Bearer
                expiresIn: 3599
        '400':
          $ref: '#/components/responses/BadRequest'
        '401':
          $ref: '#/components/responses/Unauthorized'
        '429':
          $ref: '#/components/responses/TooManyRequests'
        '500':
          $ref: '#/components/responses/InternalError'
      security: []
components:
  schemas:
    TokenRequest:
      type: object
      required:
        - clientId
        - clientSecret
      properties:
        clientId:
          type: string
          format: uuid
        clientSecret:
          type: string
    TokenResponse:
      type: object
      required:
        - accessToken
        - tokenType
        - expiresIn
        - associationId
      properties:
        accessToken:
          type: string
        tokenType:
          type: string
          example: Bearer
        expiresIn:
          type: integer
          description: Seconds until expiry
          example: 3599
        associationId:
          type: string
          format: uuid
          description: Zeam association the credentials map to.
    Problem:
      type: object
      required:
        - type
        - title
        - status
      description: RFC 7807 problem details.
      properties:
        type:
          type: string
          format: uri
          example: https://errors.zeam.app/validation-error
        title:
          type: string
          example: Validation Error
        status:
          type: integer
          example: 422
        detail:
          type: string
          example: The 'amount' field must be a positive decimal.
        instance:
          type: string
          example: /v1/quotes
        requestId:
          type: string
          example: 01J8Z6K3QW9F2
        errors:
          type: array
          items:
            type: object
            properties:
              field:
                type: string
              message:
                type: string
  responses:
    BadRequest:
      description: Malformed request.
      content:
        application/problem+json:
          schema:
            $ref: '#/components/schemas/Problem'
    Unauthorized:
      description: Missing or invalid authentication.
      content:
        application/problem+json:
          schema:
            $ref: '#/components/schemas/Problem'
    TooManyRequests:
      description: Rate limit exceeded.
      headers:
        Retry-After:
          description: Seconds to wait before retrying.
          schema:
            type: integer
      content:
        application/problem+json:
          schema:
            $ref: '#/components/schemas/Problem'
    InternalError:
      description: Unexpected gateway error.
      content:
        application/problem+json:
          schema:
            $ref: '#/components/schemas/Problem'
  securitySchemes:
    BearerAuth:
      type: http
      scheme: bearer
      bearerFormat: JWT
      description: Access token issued by POST /v1/auth/token.
    ZeamAuth:
      type: apiKey
      in: header
      name: x-zeam-auth
      description: Application secret (Kong apiKey) issued at registration.

````