Authentication
Lucidtech APIs require you to authenticate using the OAuth2 protocol. Our SDKs will typically handle authentication for you but should you wish to use the REST API, you would need to do this yourself. Here is a brief introduction to get you started
You should already have acquired a client id, client secret and api key before continuing. The client id and client secret will be used to get an access token from the auth endpoint and the api key will be used together with the access token to authorize to the API.
Unless specified otherwise in the credentials file you have received, the endpoint for authentication is https://auth.lucidtech.ai and the endpoint for the API is https://api.lucidtech.ai​
To acquire an access token we need to ask the auth endpoint with our client id and client secret for access. This is done by performing a HTTP POST request to the token endpoint /oauth2/token with two headers provided. One header should be 'Authorization' with base64 encoded client_id and client secret and one header should be 'Content-Type' which will always contain the same value 'application/x-www-form-urlencoded'.
Header name | Header value |
Authorization | Basic Base64Encode(client_id:client_secret) |
Content-Type | application/x-www-form-urlencoded |
Read more about Base64Encode here​
Since we are dealing with 'client_credentials' we need to specify this in the url as a query parameter. The final URL to make the request to is https://auth.lucidtech.ai/oauth2/token?grant_type=client_credentials​
Here is an example getting access token using curl in bash.
$ credentials="<your client id here>:<your client secret here>"$ base64_encoded_credentials=`echo -n $credentials | base64 -w 0`$ curl -X POST https://auth.lucidtech.ai/oauth2/token?grant_type=client_credentials -H "Content-Type: application/x-www-form-urlencoded" -H "Authorization: Basic $base64_encoded_credentials"
If everything is working as expected, the response should look similar to the following
{"access_token":"eyJ...","expires_in":3600,"token_type":"Bearer"}
The access token will expire after some time, currently after 3600 seconds (1 hour). When the token expires you will need to get a new access token using the same procedure.
Upon successfully acquiring access token from previous step, we are ready to call the API! To do that we need to provide two headers to the API. One header 'x-api-key' with our api key and one header 'Authorization' with the newly acquired access token.
Header name | Header value |
Authorization | Bearer <your access token here> |
x-api-key | <your api key here> |
$ api_key="<your api key here>"$ access_token="<you access token here>"$ curl https://api.lucidtech.ai/v1/documents -H "x-api-key: $api_key" -H "Authorization: Bearer $access_token"
Our SDKs will handle acquiring access token for you. The only thing you need to do is put the credentials in a file in the correct location on your computer and the SDK will discover them. The credentials file should be placed on the following location based on the OS you are running
Operating System | Location |
Linux/Mac | ~/.lucidtech/credentials.cfg or $HOME/.lucidtech/credentials.cfg |
Windows | %USERPROFILE%.lucidtech\credentials.cfg or %HOME%.lucidtech\credentials.cfg |
The credentials.cfg file should look like the following
[default]api_key = <your api key here>client_id = <your client id here>client_secret = <your client secret here>auth_endpoint = auth.lucidtech.aiapi_endpoint = https://api.lucidtech.ai/v1