Accessing any of DocsInk services requires a "bot" access token to be present in an
System level access tokens granting administrator like permissions when using the APIs. All bot tokens issued are directly tied to a specific DocsInk organization. Bot tokens are ideal for integrations that operate in the background and require no user interaction. These tokens get generated when an administrator of an organization has installed your client application into their account.
Bot tokens are disabled by default. To enable, navigate to the "Bots" section within your client application settings and click the checkbox to active the bot user. When activated, you'll see a section at the bottom of the page title "Bot Tokens". This will show you a list of bot tokens for each organization that has installed your client application. A new event is triggered when an organization installs your application. The event will be posted to the registered events callback url with the payload containing both the organization id and access token of the bot.
It is in our roadmap to support the client credentials grant type in the near future. This will allow us to set expirations for bot tokens and generate them on the fly as-needed using the client applications' id and secret.
Leverage OAuth2.0 and the DocsInk authentication system to provide users with a seamless login experience.