System authentication
Updated date: 30/04/2023
Updated by: VNPT eContract's team
To protect user information and authenticate users, VNPT eContract applies a token-based authentication model (Token-based Authorization).
The system is authenticated using the Authorization code authentication model. Users are identified by a username and password pair. After the account is authenticated, users are allowed to connect to APIs that are authorized based on their account.
When integrating the system, the authentication request needs to define the parameters:
- HTTP Content-Type:
application/json; charset=utf-8 - HTTP Header:
Authorization: Bearer <access_token>
The Authorization code parameter is valid for 24 hours from the time the response is received from the VNPT eContract system (this time can be customized for each integrated system). API functions that require the Authorize parameter: Bearer <access_token> must perform system login before accessing the APIs.