Every request to the Nyckel API must be authenticated with a JWT access token sent in the Authorization header:

Authorization: Bearer <accessToken>

Access tokens are obtained by POSTing to the https://www.nyckel.com/connect/token endpoint with your client_id and client_secret. The same credentials are surfaced in two places for convenience:

The Access Management section of your Nyckel account.
The Integrate tab of any Function.

Either location shows the same account-wide client_id and client_secret.

curl -X POST \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -d 'grant_type=client_credentials&client_id=<clientId>&client_secret=<clientSecret>' \
  'https://www.nyckel.com/connect/token'

A successful response returns a bearer token valid for one hour:

{
  "access_token": "<accessToken>",
  "token_type":   "Bearer",
  "expires_in":   3600
}

Tokens expire after one hour; request a new one as needed to keep API access uninterrupted. The connect/token endpoint lives outside the /v1/ API surface and is not part of this reference.