How it Works: The Mobile Authorization API

Request authorization tokens to initialize Square mobile solutions like Reader SDK.

Server Side
Languages Supported
Additional Resources

Mobile Authorization API process flow

The Mobile Authorization API accepts an account credential (OAuth token or Personal Access Token) and location ID and returns an authorization code that custom mobile apps can use to initialize Square mobile solutions like Reader SDK to accept payments using Square hardware. In general, requesting a mobile authorization code involves the following steps:

  1. The mobile app calls the custom authorization service.
  2. The authorization service completes Square's OAuth flow and obtains a valid OAuth token.
  3. The authorization service uses the Locations API to call the ListLocations endpoint and gather a list of locations associated with the target account.
  4. The authorization service API selects a target Location ID programmatically or with a web UI.
  5. The authorization service calls CreateMobileAuthorizationCode with the OAuth token and selected Location ID.
  6. The authorization service returns a mobile authorization code to the mobile app.
Mobileauthz process flow

Contact Developer Support, join our Slack channel, or ask for help on Stack Overflow