OAuth2 Authorize

curl --request POST \
  --url https://api.aries.com/v1/oauth2/authorize \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "client_id": "client_abc123xyz",
  "email": "[email protected]",
  "password": "SecurePassword123!",
  "redirect_uri": "https://yourapp.com/callback",
  "response_type": "code",
  "scope": "read write",
  "state": "random_state_string_123"
}
'

{
  "client_name": "My Application",
  "consent_required": true,
  "next_step_auth_id": "auth_consent_456def",
  "scopes": [
    "read",
    "write"
  ]
}

POST

oauth2

authorize

curl --request POST \
  --url https://api.aries.com/v1/oauth2/authorize \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "client_id": "client_abc123xyz",
  "email": "[email protected]",
  "password": "SecurePassword123!",
  "redirect_uri": "https://yourapp.com/callback",
  "response_type": "code",
  "scope": "read write",
  "state": "random_state_string_123"
}
'

{
  "client_name": "My Application",
  "consent_required": true,
  "next_step_auth_id": "auth_consent_456def",
  "scopes": [
    "read",
    "write"
  ]
}

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Body

application/json

client_id

string

required

OAuth2 client identifier

Example:

"client_abc123xyz"

string<email>

required

User's email address

Example:

"[email protected]"

password

string<password>

required

User's password

Example:

"SecurePassword123!"

redirect_uri

string<uri>

required

Redirect URI registered with the client

Example:

"https://yourapp.com/callback"

code_challenge

string

PKCE code challenge (base64url encoded)

Example:

"E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM"

code_challenge_method

enum<string>

PKCE challenge method

Available options:

S256,

plain

Example:

"S256"

response_type

string

default:code

OAuth2 response type

Example:

"code"

scope

string

Space-separated list of requested scopes

Example:

"read write"

sid

string

Session ID for RSA encryption

Example:

"session_xyz789"

state

string

Opaque value to maintain state between request and callback (CSRF protection)

Example:

"random_state_string_123"

Response

Authorization initiated successfully

client_name

string

Name of the OAuth2 client

Whether user consent is required

is_mfa

boolean

Whether MFA is required

next_step_auth_id

string

Authorization session ID for next step

scopes

string[]

List of requested scopes

API Authentication OAuth2 Authorize Confirm

⌘I

API Reference

oauth2

Clients

Accounts

Orders

Market Data

Watchlist

Chart

OAuth2 Authorize

Authorizations

Body

Response