Issue a short-lived platform access token for a principal

POST 
/token/issue

Issues a short-lived platform access token bound to a principal within a realm. Intended for backend-to-backend use: the caller must be authenticated via serviceAuth. The resulting token can be used by frontend clients to call customer-facing Billing APIs on behalf of the same principal.

Request

Responses

200

Token issued

400

Bad Request

401

Unauthorized

403

Forbidden (realm/account mismatch, billing_account_id not derived from session/principal, or insufficient role)

429

Rate limited

Response Headers

Retry-After

Seconds to wait before retry.

500

Internal Server Error