1. OAuth 2.0 Authentication
eINVOICING
  • eInvoicing Service
    • About Us
    • What We Offer
    • Changelog
    • On Boarding
    • FAQ (EN)
    • FAQ (GR)
    • eInvoicing Service API
      • API Authentication
        • API Key Authentication
          • /Authentication/login
            POST
        • Bearer Token Authentication
          • Authentication Login Bearer Token
            POST
          • Authorization Refresh
            POST
        • OAuth 2.0 Authentication
          • Oauth 2.0 Client Credentials Token
            POST
          • Oauth 2.0 Refresh Token
            POST
      • API Endpoints
        • API Validations
        • Sending a Document
          • Sending a Document
          • Mandatory and Optional (Best Practice) Fields Descriptions
          • Mobile Notifications
          • IAPR SIGN POLICY METHODS
          • Record Type
          • Offline QR Code Implementation
          • Invoice/json
            POST
        • Purchase Orders for F&B
          • FnB Purchase Orders Documentation
          • Offline QR Code Implementation 8.6
          • Retrieve Open Order Documents (FnB)
            GET
        • Document Management
          • Retrieving a document
          • PDF Invoice as an Email Attachment
        • Alternative Currency Holding
          • ALTERNATIVE CURRENCY (AC)
        • Heating Allowance
          • Heating Allowance Requirements
        • Delivery Notes
          • Delivery Notes Documentation
          • Quantitative Receipt Note - 10.1, 10.2
          • /Invoice/cancelDeliveryNote
            POST
        • POS Integration
          • POS Integration
          • POS Offline QR Code Implementation
          • Offline POS Connection Procedure
          • /PosSignatures/{issuerTin}
            POST
          • /PosTransactions/signpos
            POST
        • IRIS Integration
          • IRIS Payments via POS
          • IRIS Payments via Provider
            • Provider IRIS Documentation
            • 1.1 With IRIS via Provider Payment Method
            • /IrisPayments/InitiatePayment
            • /IrisPayments/GetPaymentStatus
        • Delayed POS Payment
          • Delayed POS Payment
        • B2G Documents
          • B2G Documents
          • B2G Mandatory Fields
          • B2G Status response
          • B2G Soft Reject
          • RESEED INVOICE
          • BT-10 BuyerReference
          • B2G fields for ERP Configurator 3
          • ΕΓΚΥΚΛΙΟΣ ΠΡΟΣ ΠΑΡΟΧΟΥΣ-ΠΡΟΜΗΘΕΥΤΕΣ ΥΠΗΡΕΣΙΩΝ ΥΓΕΙΑΣ ΓΙΑ ΤΗΝ ΗΛΕΚΤΡΟΝΙΚΗ ΤΙΜΟΛΟΓΗΣΗ
          • B2G Invoicing v8.2 | EKAPY
          • /B2GInvoice/ReSeedInvoice
            POST
          • /B2GInvoice/GetLastStatus
            GET
      • JSON Structures & Payloads
        • EliseCoreDocument Structure
          • EliseCoreDocument Structure
        • Minimum & Conditional Fields
          • Minimum & Conditional Fields
        • Response Examples & Error Handling
          • Response Examples & Error Handling
      • Offline QR Code
        • Offline QR Code Instructions
      • Status MyData
        • MyData/status
          GET
      • Extra Functionalities
        • Archiver
          • Archiver Functionality
      • Terminology
        • Document Type Codes
        • VAT & TAX Codes
        • Country & Currency Codes
        • Measurement Unit Codes (IAPR & EN16931)
        • Self-Billing Remarks (IAPR)
        • Classification & Payment Method Codes (IAPR)
        • Special Invoice Category
      • VAT Validation
        • Greek VAT Check
        • EU VAT Check
      • Attachments
        • Attaching Media & PDFs
        • Parallel PDF Viewing (pdfUrl)
        • Invoice Document PDF Upload (Invoice/File)
          POST
      • Other ERP Related Segments
        • Elise - WDC Translator
        • SOFTONE Configurator
          • SOFTONE Configurator - B2G Mapping
    • eInvoicing Portal
      • Template Configuration (Default Template)
      • Single Sign-On (SSO)
        • Single Sign-on (SSO) Setup Instructions
        • Single Sign-On (SSO)
    • WIKI JSON Samples
      • 1.1 B2B
      • 1.3 B2B Sales Invoice Third Country
      • 5.2 B2B Credit Invoice Non-Associated
      • 2.1 B2B Service Rendered Invoice
      • 1.1 Debit B2G
      • 11.1 B2C Retail Sales Receipt
      • 11.4 Retail Sales Credit Note
  • Schemas
    • Sample Schemas
      • Pet
      • Category
      • Tag
    • Schemas
      • ActivationRequest
      • Orientation
      • IrisErrorResponse
      • ActivationResponse
      • PdfHtmlOptions
      • IrisPaymentStatusSuccessResponse
      • AdditionalFieldDto
      • GetKeysRequest
      • PdfUrlOptions
      • IrisPaymentsRequest
      • AddressType
      • GetTemplateResponse
      • ProblemDetails
      • IrisQrSuccessResponse
      • Address2
      • UploadImageRequest
      • AzureFunctionPayload
      • StringStringKeyValuePair
      • PayeeInfo
      • IrisQrSuccessResponseDto
      • UploadImageResponse
      • PaymentStatus
      • AddressX
      • YpahesEnum
      • AlcType
      • AlcX
      • B2GInvoiceStatusResponse
      • Attribute
      • NullableOfGeoLocation
      • CountryType
      • Bank2
      • CurrencyType
      • Dienergia
      • Classification2
      • EcrTokenType
      • CoreDoc
      • CountryX
      • EntityType
      • ExpensesClassification
      • ExpensesClassificationCategory
      • ExpensesClassificationType
      • DeliveryDetails2
      • IaprError
      • IaprTaxType
      • IncomeClassification
      • IncomeClassificationCategory
      • IncomeClassificationType
      • Invoice
      • Entity
      • InvoiceHeader
      • Entity2
      • InvoiceLine
      • InvoiceSummary
      • InvoiceType
      • InvoicesEnvelope
      • HeaderX
      • NspCode
      • OtherDeliveryNoteHeaderType
      • IFormFile
      • PartyType
      • PaymentMethodType
      • ProviderSignatureType
      • RefreshToken
      • Response
      • ResponseEnvelope
      • KeyValuePairOfintAndstring
      • LineX
      • SignatureDurationTypeCodes
      • SignaturePlaygroundData
      • MorfotyposDetailsDto
      • SignaturePlaygroundResponse
      • MyDataClassification
      • MyDataConnectPayload
      • SignedData
      • MyDataDirection
      • SigningDataRequestModel
      • NullableOfAddressX
      • SigningECCKeyPair
      • NullableOfB2GDetailsX
      • SpecialInvoiceType
      • NullableOfCountryX
      • StringStringValueTuple
      • NullableOfCurrencyX
      • NullableOfDeliveryDetail
      • NullableOfDeliveryDetail2
      • NullableOfDistributionDetailsX
      • TransmissionFailureType
      • NullableOfPaymentDetailsX
      • TransportDetail
      • NullableOfValueTupleOfstringAndstring
      • UsedSignature
      • ValidateProviderSignatureResponse
      • Party2
      • Party3
      • PartyType2
      • XmlSerializerNamespaces
      • PaymentMethod2
      • PaymentMethodMd
      • PaymentTermX
      • ProviderInfo
      • ReceptionEmailsType
      • ReceptionProvider
      • SummaryX
      • SynopsiClassificationsDto
      • SynopsiDetailsDto
      • TaxTotalDto
      • UblAllowancesCharge
      • UblInvoiceDocumentReferenceType
      • VatX
    • AccountPackageResponse
    • AdditionalDetails
    • Address
    • AllowanceCharge
    • AllowanceChargeTypeEnum
    • AuthenticationRequest
    • AuthenticationResponse
    • B2GDetails
    • B2GLastStatusResponse
    • B2GReseedInvoiceRequest
    • BadRequestResult
    • BadRequestResponse
    • Bank
    • BaseResponse
    • CardLine
    • CashLine
    • ChequeLine
    • Classification
    • CompanyAuthenticationError
    • ContractOrderDetails
    • CreditInvoiceDto
    • CustomField
    • DeliveryDetails
    • DeliveryNoteCancellationRequest
    • Detail
    • DistributionDetails
    • DocumentStatusEnum
    • FieldType
    • EliseCoreDocument
    • FnBDocumentResponse
    • EliseCoreReceipt
    • GeoLocation
    • IAPRSignPolicyEnum
    • PackingDeclaration
    • PosPaymentsRequestDto
    • PaymentMethodMetaData
    • PosPaymentsResponseDto
    • PaymentUpdate
    • Int32StringKeyValuePair
    • PosSignaturesRequestDto
    • MiscellaneousData
    • Party
    • PaymentDetails
    • PaymentMethod
    • PaymentTerm
    • RecordTypeEnum
    • RemittanceLine
    • ShipType
    • SignatureResponse
    • Summaries
    • Tax
    • TransmissionFailureEnum
    • UpdatePaymentMethodRequest
    • Vat
    • VesselDetails
    • VoucherLine
    • RefreshTokenDto
  1. OAuth 2.0 Authentication

Oauth 2.0 Client Credentials Token

IMPACT DEMO API
https://einvoiceapiuat.impact.gr
IMPACT DEMO API
https://einvoiceapiuat.impact.gr
POST
/oauth/token

Overview#

This request retrieves an OAuth 2.0 access token using the Client Credentials grant.
Use it as a prerequisite step before calling any protected endpoints that require:
Authorization: Bearer
Endpoint: POST {{uatAPI}}/oauth/token
Content-Type: application/x-www-form-urlencoded

Prerequisites (variables)#

Make sure the following variables are set in the active scope:
{{uatAPI}} — Base URL for the UAT API host
{{issuerTIN}} — OAuth client id (VAT number / TIN)
{{apiKey}} — OAuth client secret (API key)

Request body (x-www-form-urlencoded)#

FieldValueRequiredNotes
grant_typeclient_credentialsYesMust be exactly client_credentials
client_id{{issuerTIN}}YesClient identifier (TIN)
client_secret{{apiKey}}YesClient secret (API key)

Successful response (200 OK)#

Typical fields returned:
access_token — Token to use in Authorization: Bearer ...
token_type — Usually Bearer
expires_in — Token lifetime in seconds
refresh_token — Refresh token

Common error (400 Bad Request)#

Example:
{
  "error": "invalid_request",
  "error_description": "Invalid credentials"
}
This usually means:
client_id / client_secret is wrong, or
credentials are not valid for the selected {{uatAPI}} environment.

How to use in downstream requests#

Add a header in protected(Bearer ) requests:
Authorization: Bearer {{oauthAccessToken}}
the (POST {{uatAPI}}/oauth/token) supports refresh, use the refresh-token request (grant_type refresh_token) to obtain a new access token.

Request

Header Params

Body Params application/x-www-form-urlencodedRequired

Request Code Samples

Shell
JavaScript
Java
Swift
Go
PHP
Python
HTTP
C
C#
Objective-C
Ruby
OCaml
Dart
R
Request Request Example
Shell
JavaScript
Java
Swift
curl --location --request POST 'https://einvoiceapiuat.impact.gr/oauth/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode 'client_id={{issuerTIN}}' \
--data-urlencode 'client_secret={{apiKey}}'

Responses

🟢200Success
application/json
Body

Example
{
    "access_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1bmlxdWVfbmFtZSI6IkVMMTU0Njk3MzkxIiwicm9sZSI6IlBPU1QiLCJuYmYiOjE3NzQzNjgyMTYsImV4cCI6MTc3NDM2OTExNiwiaWF0IjoxNzc0MzY4MjE2fQ.v-J1x8N-7uTR3uFBU4mk8gv8-_jhOulKgKpCVVgm8eE",
    "token_type": "Bearer",
    "expires_in": 900,
    "refresh_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1bmlxdWVfbmFtZSI6IkVMMTU0Njk3MzkxIiwicm9sZSI6IlBPU1QiLCJuYmYiOjE3NzQzNjgyMTYsImV4cCI6MTc3NDk3MzAxNiwiaWF0IjoxNzc0MzY4MjE2fQ.nVpVeLSy4CKN49SJnE7by3NnmjJi3U1W6qNHQshz1zU"
}
🟠400Bad Request
Modified at 2026-03-26 15:05:00
Previous
Authorization Refresh
Next
Oauth 2.0 Refresh Token
Built with