Locating your API credentials

1. Reloadly uses the OAuth 2.0 authorization framework. Before your application can call any Reloadly API, it needs to exchange your credentials for an access token. Those credentials — your Client ID and Client Secret — live inside the Reloadly portal.

   Getting "Full authentication is required to access this resource"?
   This error means your request is missing a valid access token, or you're using a token from the wrong environment. Make sure you're generating a token with the correct credentials for the environment you're calling (live vs. sandbox).

   
   
   
   

   Step 1	Step 2	Step 3	Step 4
   Create your account If you don't have one yet, register for a free Reloadly account. No credit card required for sandbox access.	Log in to the portal Go to reloadly.com/login and sign in with your email and password.	Open API settings In the left sidebar, click Developers, then select API Settings. Your Client ID and Client Secret are displayed on this page.	Switch environments as needed Use the Live / Sandbox toggle in the sidebar to switch between environments and view the corresponding set of credentials.

    

   Two environments, two sets of credentials

   Reloadly gives you completely separate credentials for each environment. Tokens generated from one set are not valid in the other.
   
   

**Live environment (Production)**

- Token lifetime: 60 days (5,184,000 seconds)

- Use for: Real transactions with live customers

**Sandbox environment (Test)**

- Token lifetime: 24 hours (86,400 seconds)

- Use for: Development, QA, and integration testing

Audience URLs by product

When you request an access token, you specify an audience URL that tells Reloadly which API and environment the token is for. Use the correct URL for your environment.

Next steps

Once you have your credentials, follow the Quickstart guide to generate your first access token and make your first API call. The guide covers the full token request format and shows example responses for each product.