# Authorization

Obtain and manage access tokens via **OAuth 2.0 Client Credentials**.
Send `grant_type=client_credentials` with your `client_id` and `client_secret`.
Use the returned `access_token` in `Authorization: Bearer <token>`.
Tokens are short-lived—reuse during validity and renew on expiry.


## Obtain access token

 - [POST /v2/partner/auth/token](https://fondo-api-docs.redocly.app/openapi/api_3.0.3/authorization/authtoken.md): Issues a short-lived bearer token using OAuth 2.0 Client Credentials. Send grant_type=client_credentials with your client_id and client_secret (optionally scope, state). Use the returned access_token in the Authorization: Bearer header on subsequent requests. The response also includes expires_in (seconds) and echoes state when provided.