Roles & Permissions

To interact securely with the Endless Commerce GraphQL API, authentication is a crucial step. Follow these steps to authenticate and obtain a token for subsequent API requests.

Use the signIn mutation to authenticate and acquire an access token. Include your credentials (such as username and password) in the mutation.

mutation {
    signIn(input: {
        loginIdentifier: "your@email",
        password: "your-password"
    }) {
        token
        tokenExpiration
        user {
            party {
                id
            }
        }
    }
}

Replace "your_username" and "your_password" with your actual credentials. The response will include the access token.

{
  "data": {
    "signIn": {
      "token": "your_access_token"
    }
  }
}

Step 2: Use Token in Subsequent Requests

Include the obtained access token in the Authorization header with the Bearer scheme for all subsequent API requests.

Example using cURL:

curl -X POST \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer your_access_token" \
  --data '{ "query": "{ yourGraphQLQuery }" }' \
  https://api-dev.endlesscommerce.com/graphql

Replace your_access_token with the token obtained from the signIn mutation.

Now, you are authenticated and can make secure requests to the Endless Commerce GraphQL API.

Feel free to reach out if you have any questions or need further assistance!

Note: Please replace placeholder values with your actual credentials and tokens when using the examples.

Step 1: Sign In to Obtain Token​

Step 2: Use Token in Subsequent Requests​

Step 1: Sign In to Obtain Token

Step 2: Use Token in Subsequent Requests