OAuth 2.0 Bearer Token

OAuth 2.0 Bearer Token authenticates requests on behalf of your developer App. As this method is specific to the App, it does not involve any users. This method is typically for developers that need read-only access to public information. 

This authentication method requires for you to pass a Bearer Token with your request, which you can generate within the Keys and tokens section of your developer Apps. Here is an example of what a request looks like with a fake bearer token plugged in:

      curl "https://api.twitter.com/2/tweets/1261326399320715264" \


API calls using app-only authentication are rate limited per endpoint at the App level.

To use this method, you'll need a bearer token, which you can generate by passing your consumer key and secret through the POST oauth2/token endpoint or from the keys and token section of your App settings in the devoloper portal. If you'd like to revoke a bearer token, you can use the POST oauth2/invalidate_token endpoint or click where it says revoke next to the bearer token in the keys and tokens section of your App settings.


Next steps

Was this document helpful?
Thank you

Thank you for the feedback. We’re really glad we could help!

Thank you for the feedback. How could we improve this document?
Thank you for the feedback. Your comments will help us improve our documents in the future.