# AUTHENTICATION

Invoke the Authentication API to generate, refresh, and revoke access tokens.  An access token is required to perform any authorized API operation.

## Authorize Session

 - [POST /auth/token](https://api.tenovos.com/openapi/v1.5/authentication/getauthtoken.md): Generates authentication credentials that expire after one hour.

The authentication response includes an accessToken which is used as the AccessToken request header when performing any authenticated operation.

This operation will also accept the previous authentication response as the request payload to return a refreshed access token.  The access token expires after 1 hour and must be refreshed after expiration, using the included refreshToken.  The refresh token can be used for up to 30 days to request new access tokens, or until the refresh token is revoked.  Once the refresh token expires or is revoked, the user credentials must be provided again to generate a new access token and refresh token.

Average Response Time: 3671ms (New Token)

Average Response Time: 233ms (Refresh Token)

## Expire Access Token

 - [DELETE /auth/token](https://api.tenovos.com/openapi/v1.5/authentication/expiretoken.md): Expire an access token before the token's expiration date and revoke access to the system. 

Access tokens normally expire within an hour.

This operation expires an access token upon request so that the token may no longer be used for future operations.

Average Response Time: 288ms

## Impersonate User (deprecated)

 - [POST /auth/impersonate](https://api.tenovos.com/openapi/v1.5/authentication/impersonate.md): This endpoint generates an Access Token and Authorization given a system username.