SUUNTO AUTHORISATION API

API change history

OAuth 2 authentication for Suunto integration API. This API is used to authenticate user against the Suunto systems. In order to transfer any data to/from Suunto systems, user need to provide access rights via the authorization process.

Token

Token endpoint. Provides JWT token (access and refresh). Refresh access token: /oauth/token?grant_type=refresh_token&refresh_token=<refresh_token>. New access and refresh tokens: /oauth/token?grant_type=authorization_code&code=<authorization code from /authorize endpoint>. Token endpoint is protected using Basic authentication scheme. The Authorization header has to be added as specified in RFC7617. Authorization header format - Authorization: Basic Base64(username:password).

Request

Request URL

https://cloudapi-oauth.suunto.com/oauth/token?grant_type={grant_type}[&code][&refresh_token][&redirect_uri]

Request parameters

grant_type

string

Grant type. Possible values: authorization_code or refresh_token
code (optional)

string

Authorization code obtained from Authorize endpoint
refresh_token (optional)

string

Refresh token obtained from token endpoint
redirect_uri (optional)

string

same redirect URI as used for /authorize endpoint request

Request body

Responses

200 OK

JWT token (access and refresh) encoded as base64 strings. Token expiration time (seconds since Unix epoch) is in the "exp" token attribute.