Skip to main content


class OAuth2.Server.Token extends %Library.RegisteredObject

The class OAuth2.Server.Token implements the token endpoint, as specified in RFC 6749, for the Authorization Code, Password Credentials and Client Credentials grant types, and for refreshing the access token.
This class also serves as the endpoint for token management requests from the resource server and client.
All requests to this endpoint are of Content-Type "application/x-www-form-urlencoded". The requests from a confidential client must be authenticated using basic authentication with the client id and client secret as specified in RFC 6749. This class is used internally by InterSystems IRIS. You should not make direct use of it within your applications. There is no guarantee made about either the behavior or future operation of this class.


parameter HTTP200OK = 200 OK;
parameter HTTP400BADREQUEST = 400 Bad Request;
parameter HTTP401UNAUTHORIZED = 401 Unauthorized;
parameter HTTP500INTERNALSERVERERROR = 500 Internal Server Error;

Inherited Members

Inherited Methods

FeedbackOpens in a new tab