cURL

POST https://api-sandbox.dwolla.com/client-tokens
Accept: application/vnd.dwolla.v1.hal+json
Content-Type: application/json
Authorization: Bearer {{token}}
{
  "action": "customer.update",
    "_links": {
      "customer": {
          "href": "https://api-sandbox.dwolla.com/customers/{{customerId}}"
      }
    }
  }

{
  "token": "4adF858jPeQ9RnojMHdqSD2KwsvmhO7Ti7cI5woOiBGCpH5krY"
}

Drop-in Components

Create a client token

Create a client token for secure authentication within Dwolla Drop-in components. Requires a granular permission action and a Customer link to define what operations the end user can perform within the component. Returns a short-lived token for configuring client-side Drop-in components including customer creation, verification, funding source management, and payment processing. Essential for implementing secure, embeddable UI components without exposing application credentials to the frontend.

POST

client-tokens

cURL

POST https://api-sandbox.dwolla.com/client-tokens
Accept: application/vnd.dwolla.v1.hal+json
Content-Type: application/json
Authorization: Bearer {{token}}
{
  "action": "customer.update",
    "_links": {
      "customer": {
          "href": "https://api-sandbox.dwolla.com/customers/{{customerId}}"
      }
    }
  }

{
  "token": "4adF858jPeQ9RnojMHdqSD2KwsvmhO7Ti7cI5woOiBGCpH5krY"
}

Authorizations

Authorization

string

header

required

The access token received from the authorization server in the OAuth 2.0 flow.

Headers

enum<string>

default:application/vnd.dwolla.v1.hal+json

required

The media type of the response. Must be application/vnd.dwolla.v1.hal+json

Available options:

application/vnd.dwolla.v1.hal+json

Body

application/json

Response

200

application/json

Client token created successfully

The response is of type object.

Building with Drop-in Components Changelog

SDKs

Drop-in Components

Changelog

Authorizations

Headers

Body

Response