Secure OAuth Token Management API
Enterprise-grade API for managing Shopee seller access tokens with automatic refresh, company-scoped access control, and comprehensive audit logging.
Multi-layer security with API key authentication, company-scoped access, and shop ownership verification. All tokens encrypted at rest.
Intelligent queue-based refresh system ensures tokens are always valid. Automatic retry with exponential backoff for reliability.
Complete logging of all API access attempts with IP tracking, timestamps, and success/failure reasons for compliance.
Sellers authorize your application through Shopee OAuth flow. Initial access and refresh tokens are stored securely.
Register your company and receive an API key. Map which shops your company can access for security isolation.
Call our API with your API key, company ID, and shop ID to receive a valid access token. Cached for performance.
Our system automatically refreshes tokens before expiration. You always get valid tokens without manual intervention.
SHA-256 hashed keys with expiration and revocation support
Each API key is bound to a single company
Explicit mapping of which companies can access which shops
Per-company rate limits to prevent abuse
All tokens and sensitive data encrypted at rest
All access attempts logged with IP, timestamp, and outcome
Contact the administrator to register your company and receive an API key.
curl -X POST https://token.acsell.ai/api/v1/tokens/access \
-H "X-API-Key: ak_prod_your_key_here" \
-H "Content-Type: application/json" \
-d '{
"company_id": "your-company-uuid",
"shop_id": 123456789
}'{
"success": true,
"data": {
"access_token": "shopee_access_token_here",
"expires_at": "2025-10-27T18:00:00Z",
"shop_id": 123456789
}
}/api/v1/tokens/accessGet access token for a shop (Company Scoped)
/api/tokens/shop/:shopIdGet access token for a shop (Legacy)
/api/tokens/merchant/:merchantIdGet access token for a merchant (Legacy)
/api/admin/statsGet system statistics and monitoring data