> For the complete documentation index, see [llms.txt](https://xoxoday.gitbook.io/plum/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://xoxoday.gitbook.io/plum/developer-resources/overview-of-reward_api/api-endpoints-1/authentication/authorization-request.md).

# Client ID, Secret ID, and Token Creation

Xoxoday uses bearer authentication, where each request must include an HTTP header that includes your Client ID, Secret ID, and Access Token. The following guide explains how to generate your client ID, secret ID, and access tokens from the admin portal.

## Generating Client ID & Secret Key

### Step 1: Use our [marketplace](https://stores.xoxoday.com/) URL to log in to your plum admin account.

<figure><img src="/files/076mWrpRU28p11MN0pSf" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/pcdAYoA7P9krAvjj97xq" alt=""><figcaption></figcaption></figure>

### Step 2: Generate Client ID

In the next step, Click "**Settings**" tab from the header and select "**API**" on the left panel.

<figure><img src="/files/y6ByCGg99cQeejfVwrJI" alt=""><figcaption></figcaption></figure>

You can now see the "**Reward API**" tab. Click on the "**Generate Client ID**" button.

A pop-up will appear showing the scope of Integration i.e Plum PRO API, click on the Save button.

<figure><img src="/files/R7tYr4MI9UIQVa31szL8" alt=""><figcaption></figcaption></figure>

You will now be able to find **Client ID** and **Secret ID** on the dashboard as shown below.

<figure><img src="/files/7hlKmrtiMi2LgchICmSg" alt=""><figcaption></figcaption></figure>

### Step 3: Generating Access & Refresh token

Now you have the client id and secret key, you can generate both the access and refresh token by clicking on the " **Generate Token**" button.

<figure><img src="/files/mzdapiLRhLoIuLQFFNOd" alt=""><figcaption></figcaption></figure>

**You can copy the newly generated tokens for further use.**

<figure><img src="/files/qN7ct7rC4vDWFmiXO8wp" alt=""><figcaption></figcaption></figure>

**Note: Once you have both the token, you can manage your tokens via these** [**steps**](/plum/developer-resources/overview-of-reward_api/api-endpoints-1/authentication/token-management.md)

**PLEASE NOTE:**

OAUTH\_URL value for\
**Development -** [ **https://stagingaccount.xoxoday.com/chef**](< https://stagingaccount.xoxoday.com/chef>)

**Production -** [**https://accounts.xoxoday.com/chef**](https://accounts.xoxoday.com/chef)\
\ <br>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://xoxoday.gitbook.io/plum/developer-resources/overview-of-reward_api/api-endpoints-1/authentication/authorization-request.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.