Authenticate Requests to the API Gateway

This article is intended for third party developers getting started developing an integration with Filevine. It outlines the steps for authenticating to the gateway. For more information on running further API requests, read the API documentation:

• API Documentation for US users
• API Documentation for Canadian users

Filevine’s API gateway allows us to support the ongoing development of our application, and provides customers and the company with better monitoring of their API traffic. The gateway allows more precise tools to facilitate requests with more granular controls.

• Prerequisite Steps
• Request a Bearer Token
• Request the User ID and Org ID
• Make Further Requests

Prerequisite Steps

1. Request a Client ID and Secret from Filevine

The client ID and secret can be requested and viewed in the Account Manager. Click on your profile picture in the top right and click Manage My Account to open the Account Manager in a new tab.

In the Account Manager, click Access Tokens > Client Secrets. In this tab, you should see a popup option for requesting Higher API access. 

In this popup, click Next and fill out the form. If the request is approval, you will receive an email from Filevine with a secure link to the client ID and secret.

2. Create a Service Account User

Create a service account user that will represent the integration for testing. This user will perform the API actions, meaning that the user’s permission will be reflected in the API.

1. In Filevine, navigate to Main Menu > Advanced > Service Accounts. 
   
2. Click New and select the integration from the dropdown. 
   
3. You can choose to grant all permissions to the service account, or elect to provide granular permissions manually later.
4. Click Create.

3. Generate a Personal Access Token (PAT)

Before you make an authentication request to the gateway, you must generate a Personal Access Token (PAT) in Filevine.

Generate an access token in Filevine’s Account Manager. (You must be an Account Admin to generate access tokens.) 

To open the Account Manager, click your profile picture in the top right and click Manage My Account to open the Account Manager in a new tab. In the Account Manager, click Access Tokens > Personal Access Tokens. On this page, click + New to generate a PAT.

Read more about how to generate an access token.

Request a Bearer Token 

Make a POST request to the Filevine Identity endpoint below, using the information collected in the table and in step 1. You will receive a bearer token, its expiration time (listed in seconds), and the requested scopes.

A Note on Scopes

The scopes for this request should be space-separated, not comma-delimited. They should be entered exactly as they appear in the preceding table. Read the following for more information about each of the scopes:

• fv.api.gateway.access: generic scope for gateway access
• tenant: access to FV Tenant (get tenant ID)
• filevine.v2.api.*: access to Filevine API Methods
• openid: get user information
• email: get user email
• fv.auth.tenant.read: scope for the  gateway to request the correct base URL path from FV Auth (tenant URL)

Request the User ID and Org ID

Perform a your first request to the API gateway to get your User ID and Org ID. You will use the bearer token (from step 2), the User ID, and the Org ID as headers in all further requests.

In response, you  will receive the User ID and Org ID. 

Make Further Requests

Use Filevine’s API Documentation to make additional requests:

• For US users
• For Canadian users

Use the bearer token and provide the User ID and Org ID as headers in all further requests.