Trelica
HomeFeaturesAboutContact us
Search…
About Trelica
πŸ“Œ
Get started
What is SaaS?
Quick start
Product tour
Contact
πŸ”
Discovery
Linking Trelica to other SaaS applications
Integration types
Connection types
Using a dedicated Trelica account for integrations
Disconnecting
πŸ”—
Integrations
Specific apps
Building new integrations
πŸ•Έ
Browser extension
Using the browser extension to discover apps
πŸ’»
Applications
Applications inventory
Triaging new business applications
Reviewing applications
Reviewing non-business apps
Unidentified apps
App Hub
πŸ“‚
Contracts & Licenses
What are licenses in Trelica?
Entering license details
What are contracts in Trelica?
Do I need to add contracts?
Adding contracts manually
Automating contract collection
Renewing app licenses
πŸ’°
Spend
Reviewing spend transactions
Transaction rule priorities
Importing spend data
πŸ”’
Security
Access risk
Blocking third-party applications in Google Workspace
πŸ–¨
Assets
Tracking assets
Creating and managing assets
Configuring asset settings
πŸ“„
Assessments
Merge fields
βš™
Workflows
Automating activities with workflows
Building workflows
Managing workflow runs
πŸ”§
Administration
People
Managing users
Configuring renewal notifications
Sending email from your own domain
API
Trelica API
Creating an App
Client Credentials Flow
Authorization Code Flow
Calling from PowerShell
Conventions
Scopes
Pagination
Filtering
Errors
Common object types
Applications
Audit log
Contracts
Assets
Workflows
Users
People
Resources
Release notes
Powered By GitBook
Conventions

Authentication

Passing access tokens

Each API request, regardless of whether you used Client Credentials, or Authorization Code flow will need an Authorization header passing. The access token should be prefixed with the string Bearer , e.g.
Authorizaton: Bearer <ACCESS_TOKEN>

Access token expiration

Access tokens expire. If this happens you will receive an HTTP 401 Unauthorized response.
Check the WWW-Authenticate header for more details. A typical error would be:
Bearer error="invalid_token", error_description="The token expired at '12/23/2020 10:27:15'"
If you are using Authorization Code flow and requested a refresh token, using the offline_access scope, then you can use the refresh token to request a new access token.

Date/time parameters

Dates or date/times should be passed and received formatted to RFC 3339. This is essentially ISO 8601 format.
Example
Description
2020-12-25
Effectively 2020-12-25T00:00:00
2020-12-25T10:50:00Z
10:50am UTC on 25 December 2020
2020-12-25T10:50:00.5095207Z
High precision date/time
​
Previous
Calling from PowerShell
Next
Scopes
Last modified 28d ago
Copy link
Outline
Authentication
Passing access tokens
Access token expiration
Date/time parameters