Legal
Recommended Products
-
CoCounsel
Move faster and accomplish more with a professional-grade, generative AI assistant that transforms the way you work. Thomson Reuters CoCounsel is with you every step of the way, backed by authoritative content and industry-leading expertise.
-
Westlaw
Conduct legal research efficiently and confidently using trusted content, proprietary editorial enhancements, and advanced technology.
-
Practical Law
Accelerate how you find answers with powerful generative AI capabilities and the expertise of 650+ attorney editors. With Practical Law, access thousands of expertly maintained how-to guides, templates, checklists, and more across all major practice areas.
Tax & Accounting
-
Top products for corporations
-
Top products for accounting firms
Recommended Products
-
CoCounsel Tax, Audit, Accounting
Move faster and accomplish more with a professional-grade, generative AI assistant that transforms the way you work. Thomson Reuters CoCounsel is with you every step of the way, backed by authoritative content and industry-leading expertise.
-
UltraTax CS
Provides a full line of federal, state, and local programs. Save time with tax planning, preparation, and compliance.
-
1040SCAN
Automate work paper preparation and eliminate data entry
Trade & Supply
Recommended Products
-
Foreign Trade Zone Management
Software that keeps supply chain data in one central location. Optimize operations, connect with external partners, create reports and keep inventory accurate.
-
Indirect Tax
Automate sales and use tax, GST, and VAT compliance. Consolidate multiple country-specific spreadsheets into a single, customizable solution and improve tax filing and return accuracy.
Risk & Fraud
Recommended Products
-
CLEAR
Search volumes of data with intuitive navigation and simple filtering parameters. Prevent, detect, and investigate crime.
-
Fraud Detect
Identify patterns of potentially fraudulent behavior with actionable analytics and protect resources and program integrity.
-
ID Risk Analytics
Analyze data to detect, prevent, and mitigate fraud. Focus investigation resources on the highest risks and protect programs by reducing improper payments.
News & Media
Recommended Products
-
Reuters Connect
Around the globe, with unmatched speed and scale, Reuters Connect gives you the power to serve your audiences in a whole new way.
-
Reuters Plus - Content Studio
Reuters Plus, the commercial content studio at the heart of Reuters, builds campaign content that helps you to connect with your audiences in meaningful and hyper-targeted ways.
-
Reuters.com Platform
Reuters.com provides readers with a rich, immersive multimedia experience when accessing the latest fast-moving global news and in-depth reporting.
Books
Recommended Products
-
What's new in legal products
Shop our latest titles
-
Shop tax customer favorites
ProView Quickfinder favorite libraries
Developers
-
APIs by industry
-
Related sites
-
United States Support
-
International support
-
New releases
-
Join a TR community
-
Free trials & demos
January 2025 release notes
What's new
Refresh token
- grant_type
- Required. Selectrefresh_tokenas the grant type.
- refresh_token
- Required. Provide the refresh token issued to you.
- An individual refresh token is valid for 24 hours. Use it within this time to avoid needing to request a new access token using the original method.
- The scopes remain the same. Omit them in subsequent calls using the refresh token grant type.
- You can use a refresh token once to generate a new access token. Then, use the new refresh token from the response.
- Refresh tokens are typically long-lasting credentials used to request additional access tokens. They link specifically to the client who receives them. If your client type is confidential or has credentials (or other authentication requirements), authenticate with the authorization server.
Basic authorization token
- Thomson Reuters signed JWT Bearer tokenThis is the default option. With every call to your callback, we generate a JWT token and sign it with a special certificate. You can validate the token signature using the provided public key (which you can download from a special URL or copy from ONESOURCE Events).
- Oauth2 CredentialsYou can set up your own identity provider and share the OAuth2 token endpoint and credentials with us. We’ll request an access token and provide it with all calls to your callback endpoint. We'll cache the access token value depending on its expiration time.
- Basic AuthorizationThis is the simplest and least secure authorization method. You provide a username and password during endpoint setup. We provide these credentials with every call to your callback as an Authorization HTTP Header in the following form:Authorization: Basic base64encoded(username: password)
This article applies to:
- Product: ONESOURCE API Administration