API documentation
AI / LLMs
Integrations
Analytics
Bank Accounts
Billable events
Companies
Coupons > Promotion codes
Custom properties
Customers
Customers > Credits
Customers > Payment methods
Integrations
Invoices
Invoices > Transactions
Invoicing entities
OAuth2
Organisations
Payments
Price configurations
Products
Quotes
Subscriptions
- GETGet subscriptions
- GETGet subscription transitions
- GETGet subscription
- GETGet subscription phases
- GETGet subscription phase
- GETGet subscription transition
- POSTCreate subscription update
- POSTCreate subscription updates
- POSTCreate subscription
- POSTCreate subscription transition
- PUTUpdate subscription
- POSTActivate subscription
- POSTCancel subscription
- POSTCancel subscription transition
- POSTPause subscription
- POSTReactivate subscription
- POSTRefresh seat products
- POSTRefresh subscriptions
- POSTReinstate subscription
- POSTRenew subscription
- POSTSimulate subscription updates
- POSTTransition subscription to next phase
Subscriptions > Templates
Third-party apps
Wallets
curl --request POST \
--url https://api.hyperline.co/v1/oauth/tokens \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"client_id": "<string>",
"grant_type": "authorization_code",
"code": "<string>",
"redirect_uri": "<string>",
"client_secret": "<string>",
"resource": "https://api.hyperline.co/mcp",
"code_verifier": "<string>"
}
'{
"access_token": "<string>",
"expires_in": 123,
"token_type": "bearer",
"refresh_token": "<string>"
}Generate tokens
Exchange an auth code received at the authorize endpoint for an actual access token, or refresh it.
curl --request POST \
--url https://api.hyperline.co/v1/oauth/tokens \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"client_id": "<string>",
"grant_type": "authorization_code",
"code": "<string>",
"redirect_uri": "<string>",
"client_secret": "<string>",
"resource": "https://api.hyperline.co/mcp",
"code_verifier": "<string>"
}
'{
"access_token": "<string>",
"expires_in": 123,
"token_type": "bearer",
"refresh_token": "<string>"
}Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Body
- Option 1
- Option 2
Application's client ID.
To exchange an auth code for an app access token, use authorization_code.
authorization_code The auth code received when creating the authorization.
Must match the value set at the GET /authorize endpoint.
Application's client secret.
The canonical URI of the resource server (RFC 8707). For MCP clients, this should be the MCP server endpoint URL. Example: https://api.hyperline.co/mcp
"https://api.hyperline.co/mcp"
PKCE code verifier (RFC 7636). The original random string used to generate the code_challenge sent during authorization. Required when code_challenge was used.
Response
Access token with which you will be able to access the Hyperline API on the organisation's behalf.
The number of seconds left before the app access token expires. Be sure to renew your app access token before this reaches zero.
bearer Refresh token with which you will be able to retrieve a new access token on this endpoint. The refresh token does not expire.
Was this page helpful?