> Portal Navigation:
> 
> - Append `.md` to any URL under `https://dev.wix.com/docs/` to get its markdown version.
> - Pages are either content pages (article or reference text) or menu pages (a list of links to child pages).
> - To get a menu page, truncate any URL to a parent path and append `.md` (e.g. `https://dev.wix.com/docs/sdk.md`, `https://dev.wix.com/docs/sdk/core-modules.md`).
> - Top-level index of all portals: https://dev.wix.com/docs/llms.txt
> - Full concatenated docs: https://dev.wix.com/docs/llms-full.txt

# some-operation

# Package: oauth-2

# Method link: https://dev.wix.com/docs/api-reference/app-management/oauth-2/create-access-token.md

## Permission Scopes:
undefined

## Introduction

Creates an access token.


<blockquote class="important">

__Important:__
Authentication methods differ depending on whether you're building a [Wix app](https://dev.wix.com/docs/build-apps/get-started/overview/about-wix-apps.md) or a [Wix Headless](https://dev.wix.com/docs/go-headless/get-started/about-headless/about-wix-headless.md) project.

* For apps using [OAuth](https://dev.wix.com/docs/build-apps/develop-your-app/access/authentication/about-oauth.md), this is the correct method.
* For apps using [custom authentication (legacy)](https://dev.wix.com/docs/build-apps/develop-your-app/access/authentication/custom-authentication-legacy.md), call [Request an Access Token](https://dev.wix.com/docs/rest/app-management/oauth-2/request-an-access-token.md) or [Refresh an Access Token](https://dev.wix.com/docs/rest/app-management/oauth-2/refresh-an-access-token.md).
* For headless projects, use one of the [authentication strategies for Wix Headless](https://dev.wix.com/docs/go-headless/get-started/setup/authentication/authentication-strategies.md).

</blockquote>

 The endpoint accepts raw HTTP requests. You must pass the request's body
parameters formatted as bytes in the raw HTTP request's `body` field,
following this template:
`{"grant_type": "client_credentials", "client_id": "<APP_ID>", "client_secret": "<APP_SECRET_KEY>", "instance_id": "<INSTANCE_ID>"}`.

When the call succeeds, Wix returns `{"statusCode": 200}` and the created access
token in the `body` field of the raw HTTP response.

In case the call fails, Wix returns the relevant `4XX` error code in the raw
HTTP response's `statusCode` field and details
about the error in `body`. Error details follow the
[conventions of the Internet Engineering Task Force (IETF)](https://datatracker.ietf.org/doc/html/rfc6749#appendix-A.7).

---

## REST API

### Examples

### Create a custom authentication refresh and access token.
```curl
curl -X POST \
'https://www.wixapis.com/oauth/access' \
-H 'Content-Type: application/json' \
-d '{
  "grant_type": "authorization_code",
  "client_id": "<APP_ID>",
  "client_secret": "<APP_SECRET_KEY>",
  "code": "<AUTH_CODE>"
}'
```

---