Ironclad · Authentication Profile

Ironclad Authentication

Authentication

Ironclad secures its APIs with apiKey and oauth2 across 2 declared security schemes, as derived from its OpenAPI definitions. OAuth 2.0 is offered via the authorizationCode and clientCredentials flow(s).

Contract Lifecycle ManagementCLMContractsLegal TechLegalOpsEnterpriseWorkflowseSignatureClickwrapAIOAuthSCIMWebhooks
Methods: apiKey, oauth2 Schemes: 2 OAuth flows: authorizationCode, clientCredentials API key in: header

Security Schemes

sec0 apiKey
· in: header (Authorization)
OAuth2 oauth2
· flows: authorizationCode, clientCredentials

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/ironclad-public-api-openapi.yml, openapi/ironclad-scim-api-openapi.yml
summary:
  types:
  - apiKey
  - oauth2
  api_key_in:
  - header
  oauth2_flows:
  - authorizationCode
  - clientCredentials
schemes:
- name: sec0
  type: apiKey
  in: header
  parameter: Authorization
  sources:
  - openapi/ironclad-public-api-openapi.yml
  - openapi/ironclad-scim-api-openapi.yml
- name: OAuth2
  type: oauth2
  flows:
  - flow: authorizationCode
    authorizationUrl: https://na1.ironcladapp.com/oauth/authorize
    tokenUrl: https://na1.ironcladapp.com/oauth/token
    scopes: 60
  - flow: clientCredentials
    tokenUrl: https://na1.ironcladapp.com/oauth/token
    scopes: 58
  sources:
  - openapi/ironclad-public-api-openapi.yml