Docs / Authentication and Authorization API
Authentication and Authorization API Developer's Guide

Introduction

The HERE Authentication and Authorization API is an OAuth 2.0 compliant REST API that allows you to obtain short-lived access tokens which you can use to authenticate requests to HERE services. Tokens expire after 24 hours.

To obtain a token which you can use to authenticate requests to the Open Location Platform,

  1. Obtain an access key and access key secret from the Open Location Platform portal. For more information, see Get Credentials.
  2. Using your access key ID and access key secret, create an OAuth 1.0 signature. For more information, see Creating a Signature.
  3. Using the signature, request a token using the Authentication and Authorization API. For more information, see Requesting a Token.
  4. Use the token to make REST requests to the Open Location Platform. For more information, see Using a Token.
  5. Tokens expire after 24 hours. Create a new signature an request a new token when your old one expires.