For developers migrating from Plaid, Link Money offers authentication JWTs on the item-based level. Item JWTs allow you to access data for a single item in Link Money.

<aside> ℹ️ Though item tokens are a valid approach to authenticating with Find Money API's Plaid endpoints, developers can also leverage User Tokens with a user_id field for a different approach to Authentication.

</aside>

Create an Item-Specific JWT

1. Retrieve your client_id and client_secret from the Developer Dashboard.

2. Retrieve the item_id for the item you want to authenticate (See Calling Back from the Gateway).

3. Retrieve the organization for the organization you want to authenticate with.

4. Make a call to the authorization server with your Oauth2 client credentials and the item_id in the payload:

   curl --request POST \\
     --url <https://dev-jhhgu9vc.auth0.com/oauth/token> \\
     --header 'content-type: application/json' \\
     --data '{"client_id":"{YOUR_CLIENT_ID}","client_secret":"{YOUR_CLIENT_SECRET}","item_id":{YOUR_ITEM_ID},"audience":"<https://link-money-api/","grant_type":"client_credentials>", "organization": {YOUR_ORG_ID}}'
   

5. If the Authorization server recognizes your Oauth2 credentials, it will respond with a JSON payload containing the item-specific bearer token:

   {
   	"token": "{YOUR_BEARER_TOKEN}",
   	"type": "Bearer"
   } 
   

6. Call to an item-specific resource in Link Money with this bearer token to retrieve data for the specified user:

   curl --request GET \\
     --url <https://linkmoney.fingoal.com/v1/plaid/item-specific-resource> \\
     --header 'Authorization: Bearer {YOUR_BEARER_TOKEN}'
   

Considerations

• Item tokens access only resources that are item-specific.
• Item tokens expire after 24 hours, after which point they must be regenerated.
• Item tokens will be generated regardless of whether the item with the specified ID exists in the Link Money API. Calls to item-specific endpoints with tokens that are for a non-existent item will return {} empty JSON.