cURL
API Reference
Post extensiontoken
POST
cURL
Authorizations
JWT Bearer token obtained from authentication. Pass as: Authorization: Bearer
Body
application/json
Request body for creating an extension auth token
Agent requesting the extension token. Required for pre_approved policy checks.
Required string length:
1 - 128Response
200 - application/json
OK
Extension exchange code with connection details
One-time exchange code. The extension trades this for the real token via API.
The auth policy that was applied
Available options:
session, pre_approved, prompt_owner Token TTL setting that was applied
Available options:
15m, 1h, session Whether the owner must approve this token in the extension UI
ISO 8601 expiration time. Null for session-based (browser manages lifecycle).
URL to open in the browser to authenticate the extension
