API Privacy Access Token

Server-Side API endpoint to fetch a privacy access token that grants your dApp access to fetch Privacy Data.

This endpoint fetches a privacy access token, which you need in order to fetch Privacy Data from a user.

API endpoint to get a privacy access token

GET https://int.quadrata.com/api/v1/privacy/access/${account}

Path Parameters

NameTypeDescription

account*

String

User's wallet address

Headers

NameTypeDescription

Authorization*

String

Basic ${base64(apiKey)}

Date*

String

Date and time of current request

Wed, 04 Oct 2023 02:39:37 GMT

Signature*

String

API Signed Request Signature

{
  "data": {
    "authToken": "...",
    "accessToken": "...",
    "type": "privacy.grants"
  }
}

This endpoint will return an auth token and an access token. Your dApp needs to combine them into one encoded string, delimited by a : and base64 encoded, in order to use it as an X-Access-Token header to fetch PII data.

Privacy Access Tokens are one time use tokens. If you attempt to reuse an access token, you will receive a 401 Unauthorized error.

const buffer = require('buffer');

const privateKeyDer = '...';
// You can find `getPrivateKeyFromDer` in "How to sign API"."Full Example" page
const privateKey = await getPrivateKeyFromDer(privateKeyDer);

const walletAddress = '...';

// You can find `makeRequest` in "How to sign API"."Full Example" page
const json = await makeRequest({
    method: 'get',
    privateKey: privateKey,
    path: `/api/v1/privacy/access/${walletAddress}`
});
const { data: { authToken, accessToken } } = json;

const xAccessToken = Buffer
    .from(`${authToken}:${accessToken}`)
    .toString('base64');

See How to sign API for message signing examples with more coverage and explanations.

PreviousAPI Get Privacy PermissionsNextAPI Get Privacy Data

Last updated