Skip to main content
POST
/
api
/
authentication
/
token
/
user
Authenticate with User Credentials
curl --request POST \
  --url https://api.telemax.com.au/api/authentication/token/user \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data username=john_doe@email.com \
  --data password=secure_password123
{
  "access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "token_type": "Bearer",
  "expires_in": 86399
}

Authorizations

Authorization
string
header
required

JWT Bearer token obtained from POST /api/authentication/token/user or POST /api/authentication/token/api-key.

Lifetime: ~24 hours (86,399 seconds). Cache the token and reuse it. Re-authenticate 5 minutes before expiry.

Scoping:

  • User tokens are scoped to a single company.
  • API key tokens may restrict access to a vehicle allowlist and/or action set (see token claims).

No refresh endpoint — re-authenticate with your credentials when the token expires.

Headers

Content-Type
string

Standard and must keep it as it is.

Body

application/x-www-form-urlencoded
username
string
required

Username

Example:

"john_doe@email.com"

password
string
required

Password

Example:

"secure_password123"

Response

Successful response

access_token
string

JWT access token

Example:

"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."

token_type
string
Example:

"Bearer"

expires_in
number<float>

Token lifetime in seconds. Default is 86399.0 (≈24 hours). Cache and reuse this token until near expiry — do not request a new token per API call.

Example:

86399