Skip to main content

Quick start

Use the Login API to integrate from a website.

Before you begin

  1. You must have already signed up as an organization with Vipps MobilePay and have your test credentials from the merchant portal.

  2. Your test sales unit must be set up for using login. See How to set up login on your sales unit.

  3. The provided example values in this guide must be changed with the values for your sales unit and user. This applies for API keys, HTTP headers, reference, phone number, etc.


This quick start shows how to integrate from a website. For one of the other flows, see the extended Login API Postman guide:

Integrate from a website

Step 1 - Setup

You will need the following values:

  • client_id - Client_id for a test sales unit.
  • client_secret - Client_secret for a test sales unit.
  • Ocp-Apim-Subscription-Key - Subscription key for a test sales unit.
  • merchantSerialNumber - The unique ID for a test sales unit.
  • internationalMobileNumber - The MSISDN for the test app profile you have received or registered. This is your test mobile number including country code.
  • redirect_uri - The website to send the user to after they log in. This must be exactly the same redirect URI as the one you specified on your sales unit in the merchant portal.

For help finding these values, see the Getting started guide

No additional setup needed :)

Step 2 - Get OIDC well-known endpoint

Get configuration information for OpenID Connect clients by using OpenID configuration endpoint.

curl -X GET \
-H "Merchant-Serial-Number: YOUR-MSN" \
-H "Vipps-System-Name: acme" \
-H "Vipps-System-Version: 3.1.2" \
-H "Vipps-System-Plugin-Name: acme-webshop" \
-H "Vipps-System-Plugin-Version: 4.5.6" \

The URL of the OpenID Provider's OAuth 2.0 Authorization Endpoint is provided in the response.

Step 3 - Log in

Log the user in by using OpenID Connect.

Compose the URI in this format (OAuth 2.0 Authorize):

Paste the URL into the address field of any browser.

Finish the login. If you have not yet consented to sharing your user information, a new screen will be presented in the app requesting your consent.

If you have already completed this process and selected Remember me in browser earlier, this will take you straight to the redirect URL.

Step 4 - Get token

On the redirect URL page, copy the code value out from the address field in the URL.

Use the code and client credentials in the following command. The client credentials is a base64-encoded string consisting of the client_id and client_secret issued by Vipps.

Example in JavaScript:

var client_id = 123456-test-4a3d-a47c-412136fd0871
var client_secret = testdzlJbUZaM1lqODlnUUtrUHI=

var wordArrayAzp = CryptoJS.enc.Utf8.parse(client_id + ":" + client_secret);
var client_credentials = CryptoJS.enc.Base64.stringify(wordArrayAzp);
curl -X POST \
-H 'Content-Type: application/x-www-form-urlencoded' \
-H 'Authorization: Basic {client_credentials}' \
-H "Merchant-Serial-Number: YOUR-MSN" \
-H "Vipps-System-Name: acme" \
-H "Vipps-System-Version: 3.1.2" \
-H "Vipps-System-Plugin-Name: acme-webshop" \
-H "Vipps-System-Plugin-Version: 4.5.6" \
--data-urlencode 'grant_type=authorization_code' \
--data-urlencode 'code=THE CODE FROM THE URL' \
--data-urlencode 'redirect_uri=http://localhost'

Copy the access token from the response.

Step 5 - (Optional) Get userinfo

Send request Get Userinfo. This uses GET:/vipps-userinfo-api/userinfo/.

Use the access token from the previous step.

curl -X GET \
-H "Content-Type: application/json" \
-H "Authorization: Bearer YOUR-ACCESS-TOKEN" \
-H "Ocp-Apim-Subscription-Key: YOUR-SUBSCRIPTION-KEY" \
-H "Merchant-Serial-Number: YOUR-MSN" \
-H "Vipps-System-Name: acme" \
-H "Vipps-System-Version: 3.1.2" \
-H "Vipps-System-Plugin-Name: acme-webshop" \
-H "Vipps-System-Plugin-Version: 4.5.6" \

Next steps

See the Login API guide to read about the concepts and details.

For more examples, see the step-by-step instructions in the Login API Postman guide.

Help us improve our documentation

Did you find what you were looking for?