This endpoint generates a JSON web token (JWT) using the client_credentials grant type. For more details on the client credentials grant type, see the OAuth 2.0 Authorization Framework, section 4.4: Client Credentials Grant.
This endpoint requires authorization using a client ID and client secret. To get a client ID and secret, you must first create a client application in Alation at Admin Settings > Authorization in the OAuth Client Applications section.
Authorization can then occur in one of two ways:
The client ID and secret can be passed as part of the header using the Basic authentication scheme, where the client ID is the username and the client secret is the password.
The client ID and secret can be passed in the request body using the client_id and client_secret body parameters.
Before consuming claims of your token, you should verify it using either the /introspect/ or /.well-known/jwks.json/ endpoints.