Interactive Playground
Walk through the full Grantex authorization flow live in your browser. No signup, no API key — just click Start.
Optionally use your own sandbox key from the Dashboard, or leave blank for the built-in demo key.
The Grantex auth service endpoint. Change this if self-hosting.
1
Register an Agent
Pending
Register a demo agent that will request permissions on behalf of a user. This creates a cryptographic identity (DID) for the agent.
POST /v1/agents
Response
2
Request Authorization
Pending
Ask a user for permission. In sandbox mode, this auto-approves and returns an authorization code immediately — no consent page needed.
POST /v1/authorize
Response
3
Exchange Code for Grant Token
Pending
Exchange the authorization code for a signed RS256 JWT grant token. This is the credential your agent presents to any service.
POST /v1/token
Response
Decode JWT Claims
4
Verify Token
Pending
Verify the grant token online. Production services can validate locally using keys retrieved from JWKS; fetching or refreshing those keys may require a network call.
POST /v1/tokens/verify
Response
5
Refresh Token
Pending
Exchange the single-use refresh token for a new grant token. The old refresh token is invalidated (rotation).
POST /v1/token/refresh
Response
6
Revoke Grant
Pending
Revoke the grant and its descendants centrally. Services that verify JWTs locally must also consult current revocation state or use short token lifetimes.
DELETE /v1/grants/:id
Response
7
Verify After Revocation
Pending
Try verifying the same token again. It should now return
valid: false — proving that revocation is effective.POST /v1/tokens/verify
Response