OAuth: Getting started
Assuming you have already built an OAuth-compatible app, the first step is to register your app in your Dashboard under 'Apps'. You will receive a Client ID and Client Secret, both of which should be kept secret. These credentials can be used to:
- Redirect users to your app's authorization form (Client ID)
- Exchange authorization codes for access tokens (Client ID & Client Secret)
- Renew your access tokens
- Deauthorize users from your app (Client ID & Client Secret)
Use the details below to configure your app to work with our platform.
- Client ID: received upon app registration
- Client Secret: received upon app registration
- Redirect URL: a URL within your app that processes authorizations
https://www.mollie.com/oauth2/authorize, see the Authorize endpoint
Access token URL:
https://api.mollie.com/oauth2/tokens, see the Tokens endpoint
Resource owner URL:
https://api.mollie.com/v1/organizations/me, see Get organization
After having registered and configured your app, you can send the merchant to Mollie through the default authorization URL as configured in your OAuth app. Good practice is to show a Connect with Mollie button which redirects the merchant to the authorization screen.
When you send a merchant to the authorization screen, Mollie will tell the merchant what data your app has requested access to, and request the merchant to confirm the authorization. An example authorization is shown below.
The merchant will be redirected back to your app, along with an auth code. With the auth code, you can retrieve an access token using default OAuth library functionality. Note access tokens are time limited - you need to refresh them periodically using the refresh token.
Using the access token on the Mollie API, your app may now access the merchant's account data, allowing the merchant to start using your app.