Skip to main content
POST
/
v1
/
oauth2
/
authorize
curl --request POST \
  --url https://api.aries.com/v1/oauth2/authorize \
  --header 'Content-Type: application/json' \
  --data '
{
  "client_id": "client_abc123xyz",
  "email": "[email protected]",
  "password": "SecurePassword123!",
  "redirect_uri": "https://yourapp.com/callback",
  "response_type": "code",
  "scope": "read write",
  "state": "random_state_string_123"
}
'
{
  "client_name": "My Application",
  "consent_required": true,
  "is_mfa": false,
  "next_step_auth_id": "auth_consent_456def",
  "scopes": [
    "read",
    "write"
  ]
}

Body

application/json
client_id
string
required

OAuth2 client identifier

Example:

"client_abc123xyz"

email
string<email>
required

User's email address

Example:

"[email protected]"

password
string<password>
required

User's password

Example:

"SecurePassword123!"

redirect_uri
string<uri>
required

Redirect URI registered with the client

Example:

"https://yourapp.com/callback"

response_type
enum<string>
required

OAuth2 response type (must be 'code')

Available options:
code
Example:

"code"

state
string
required

Opaque value to maintain state between request and callback (CSRF protection)

Example:

"random_state_string_123"

code_challenge
string

PKCE code challenge (base64url encoded)

Example:

"E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM"

code_challenge_method
enum<string>

PKCE challenge method

Available options:
S256,
plain
Example:

"S256"

scope
string

Space-separated list of requested scopes

Example:

"read write"

sid
string

Session ID for RSA encryption

Example:

"session_xyz789"

Response

Authorization initiated successfully

client_name
string

Name of the OAuth2 client

consent_required
boolean

Whether user consent is required

is_mfa
boolean

Whether MFA is required

next_step_auth_id
string

Authorization session ID for next step

scopes
string[]

List of requested scopes