Obtain Tokens for Client
Now that your client has its own KeyThe Virgil Key is a wrapper of the user's secure Private Key more ... and CardEach Card contains attributes associated with the holder of the Private key and are used to prove the ownership of a Public key more ... it is ready to start communicating with your own server.
You will collect an access token from Virgil using the client-side SDK and then use this to authenticate with your own server.
Obtain Access and Refresh tokens
To obtain an access token for a CardEach Card contains attributes associated with the holder of the Private key and are used to prove the ownership of a Public key more ... we can use the Virgil Auth service. This service also requires the client's KeyThe Virgil Key is a wrapper of the user's secure Private Key more ... to ensure the client is who they are.
// this language is not supported yet.
The identifier for Virgil Auth's own Global CardGlobal Cards are created with a unique validation token received after verification through the Virgil Identity Service more ... is
Make API calls
You are now ready to make API calls to your server and use the access token as an authentication method. For example, to authenticate with your server in an OAuth2.0 compatible way, simply provide the access token as a bearer token in a header.
GET /resource HTTP/1.1
Authorization: Bearer ACCESS_TOKEN
Next, we will cover how to validate the access token in your server side application.