Authentication
Access Tokens
To use Fluctuo Bridge, you'll need an access token. Fluctuo Bridge uses access tokens to associate requests to API resources with your account. You can find all your access tokens, create new ones, or delete existing ones on your account page.
Scopes
Access tokens can have different scopes. Each API requires a specific
scope. A scope can be for public or private access tokens.
Access tokens with private scopes are very sensitive. They can
retrieve private data and create, update, or delete data. Access tokens
with private scopes should never be accessible by your users. They must
not be included in front-end or mobile applications.
Use access tokens
To authorize GraphQL request, you must set
access_token query string with one of yours.
curl --request POST \
--url https://flow-api.fluctuo.com/v1?access_token=MY_ACCESS_TOKEN \
--header 'content-type: application/json' \
--data '{"query":"query ($lat: Float!, $lng: Float!) {\n vehicles(lat: $lat, lng: $lng) {\n\t\tid\n }\n}","variables":{"lat":48.856614,"lng":2.352222}}'
On sandbox
When you're using the sandbox, you can pass an JSON object with wanted
scope as an access token. Be careful to encode the object correctly.
The access token must contain an id (used for caching), and an array of
scopes.
jq -rn '{"id": '$(date +%s)', "scopes":["areas:read","providers:read","vehicles:read"]}|@uri'