Machine-to-Machine Access
Machine-to-machine (M2M) access allows your systems to communicate with the DigiQuip Registry API without any human login step. This is the recommended approach for automated integrations, scheduled jobs, and backend services that push or pull data from the Registry.
How it works
Section titled “How it works”DigiQuip uses Logto Machine-to-Machine to issue dedicated application credentials (client ID and client secret) for each M2M client. Your system exchanges these credentials for a short-lived access token using the OAuth 2.0 client credentials flow:
POST https://auth.digiquip.no/oidc/tokenContent-Type: application/x-www-form-urlencoded
grant_type=client_credentials&client_id=YOUR_CLIENT_ID&client_secret=YOUR_CLIENT_SECRET&resource=https://registry.kvipp.ioThe returned access_token is included as a Bearer token in subsequent API calls:
Authorization: Bearer <access_token>Tokens are short-lived. Your integration should request a new token when the current one expires (check the expires_in field in the response).
Secret rotation
Section titled “Secret rotation”M2M secrets can be rotated on request. Contact [email protected] to initiate a rotation. We will issue new credentials and coordinate a handover window so your integration is not disrupted.
Getting started
Section titled “Getting started”To set up an M2M account, contact us at [email protected]. Please include:
- A description of what your integration will do
- The environments you need access to (test, production, or both)
We will provision an M2M application and send you the credentials securely.
Pricing
Section titled “Pricing”See Data Flow pricing for details.