Security

Dispatch Pro uses the same authentication process as AgSync.

Documentation covering a number of security topics related to Dispatch Pro can be found below.

Authentication

Implicit flow is used for authentication with AgSync using the server discovery page, client ID, and client secret. A client ID and secret may be obtained by contacting AgSync support.

Authorization Code Flow

This flow is used when the client does not want to create their own login page, but still wants refresh token ability.

Implicit Flow

This flow can be used by both web-based and native applications.

Hybrid Flow

This flow is a combination of the implicit flow and authorization code flow.

Refresh Tokens

If one already has a refresh token and the access token has expired, one would need to get another access token using the refresh token. Submit a call to the token endpoint specified in the discovery document and pass the grant type with the token and a new access token will be received.

Response Types

When specifying the response type, different data may be returned.

Supported Scopes

A list of scopes is available at the discovery endpoints listed in Authentication. Further descriptions of AgSync specific supported scopes are listed below: