Terminology | Yoco Developer Hub

OAuth 2.0 terminology

Access token: A credential used to access protected resources.
Refresh token: A credential used to obtain new access tokens.
Authorization code: A short-lived code obtained during the authorisation process. It is exchanged for an access token at the end of the OAuth flow.
Client ID: Your application’s unique identifier.
Client secret: A secret key used to authenticate your application. This will only be displayed once when you create your application; make sure to store it securely.

For more details about OAuth 2.0 terminology, see the official OAuth 2.0 specification, on which Yoco’s implementation is based.