Exchange auth intent for JWT

Exchange a settled auth intent for a JWT access token.

Use Idempotency-Key on every production call. Without one, a dropped response can consume the auth intent and force the merchant to create a replacement challenge.

Authentication

AuthorizationBearer

Merchant API key (sk_m_*).

Authorization: Bearer sk_m_abc123def456...

Merchant API key (`sk_m_*`). ``` Authorization: Bearer sk_m_abc123def456... ```

Path parameters

auth_intent_idstringRequiredformat: "^ai_.+$"

Auth intent ID from create response

Response headers

X-Request-Idstring

Unique request identifier for debugging and support

Response

Token issued

access_tokenstring

RS256-signed JWT.

token_typeenum

Allowed values:

expires_ininteger

principalobject

sessionobject

accountobject

Errors

401

Unauthorized Error

402

Payment Required Error

403

Forbidden Error

404

Not Found Error

409

Conflict Error

429

Too Many Requests Error

1	{
2	"access_token": "string",
3	"token_type": "Bearer",
4	"expires_in": 21600,
5	"principal": {
6	"sub": "base:0x742d35cc6634c0532925a3b844bc9e7595f2bd18",
7	"chain": "base",
8	"wallet_address": "string"
9	},
10	"session": {
11	"sid": "sess_m1xyz98abcde7654",
12	"sub": "string",
13	"amr": [
14	"x402_payment"
15	]
16	},
17	"account": {
18	"id": "904e9f44-a5a3-4e07-94c9-9c425d6bbe64",
19	"is_new_account": true
20	}
21	}

1	curl -X POST https://identity.gwop.io/v1/auth-intents/ai_m1abc12defgh3456/exchange \
2	-H "Authorization: Bearer <token>"

Authentication

Path parameters

Headers

Response headers

Response

Errors