Homepage
Login
Getting Started
Authentication
Authentication
V2 Authentication (Deprecated)
V3 Authentication
V2 API Documentation (Deprecated)
V3 API Documentation
Getting Started
Authentication
Authentication
V2 Authentication (Deprecated)
V3 Authentication
V2 API Documentation (Deprecated)
V3 API Documentation
Getting Started
Copy Page
Choosing the Right API Version
Getting Started
Architecture
Quick Start
Authentication
Roles and API Access
API Categories
API Endpoints Reference
Making Your First API Call
Working with Encrypted Tokens
Code Examples
Error Handling
Best Practices
Troubleshooting
Support
Getting Started
Copy Page
Working with Encrypted Tokens
Understanding Token Encryption
#
Convirza uses
256-bit encryption
for access tokens to enhance security:
1.
Encrypted tokens:
Tokens are encrypted before being sent to your application
2.
Automatic validation:
The API automatically validates tokens from your Authorization headers
3.
URL-safe encoding:
Tokens are safe to use in URLs and headers
4.
No decoding needed:
Always use tokens as-is — never attempt to decode or parse them
Token Storage Best Practices
#
For Web Applications:
For Mobile Applications:
Security Notes:
Never store tokens in localStorage (vulnerable to XSS)
Never log tokens in console or error messages
Clear tokens immediately on logout
Implement token refresh before expiration
Example: Token Management Class
#
Modified at
2026-04-13 06:15:41
Previous
Making Your First API Call
Next
Code Examples
