Registration and Authentication

---

Registration

To access ERCOT APIs, you must register as a user on the ERCOT API Explorer website.

• 1. Navigate to API Explorer in a web browser.
     

  2. Click the Sign In/Sign Up button in the top-right corner to open the Sign in form in a new window.
     

  3. Click the Sign up now link at the bottom of the form to begin registering your new account.
     

  4. Enter your email address in the form and click the Send verification code button.
     

  5. Retrieve the verification code from your email and enter the code in the Verification Code field. Click the Verify code button to complete your email verification.
     

  6. Once your email address has been verified, you will be able to enter a password of your choosing, your display name, and your first and last name into the form. Click the Create button to complete the registration of your account.
     

  7. When your account registration is complete, you will be signed into the API Explorer website and have the option to sign out by clicking the Sign Out link in the top-right corner.
     

---

Authentication and authorization

Once you have registered, you can then access the ERCOT Public API. There are three components to this process:

• Extract the subscription key from the API Explorer
• Obtain an ID token
• Access the API using the ID token and subscription key

Extract the subscription key from the API Explorer

• 1. Sign in to the API Explorer in a web browser.
     

  2. Navigate to the Products page found in the top navigation.
     

  3. Select the product that you wish to subscribe to from the table: Public API.
     

  4. Enter a name for your subscription: ie. Public API.
     

  5. Click the Subscribe button and you will be redirected to your Profile page to view your active subscriptions.
     

  6. Click the Show button and copy the value of the Primary key.
     

  NOTE: It is only necessary to extract a subscription key once.

---

Obtain an ID token

ID tokens are valid for one hour. There is no way to refresh an ID token. A new ID token may be acquired by sending another POST request.

Below are examples for obtaining an ID token with either Postman, Curl, JavaScript, Java, or Python.

Obtain an ID token

Send a POST HTTP request to retrieve an ID token.

Required Query Parameters
URL	https://ercotb2c.b2clogin.com/ercotb2c.onmicrosoft.com/B2C_1_PUBAPI-ROPC-FLOW/oauth2/v2.0/token
username	<username>
password	<password>
grant_type	password
scope	openid+fec253ea-0d06-4272-a5e6-b478baeecd70+offline_access
client_id	fec253ea-0d06-4272-a5e6-b478baeecd70
response_type	id_token

PostmancurlJavaScriptJavaPython

• 1. Send a POST request to retrieve an ID token.

     https://ercotb2c.b2clogin.com/ercotb2c.onmicrosoft.com/B2C_1_PUBAPI-ROPC-FLOW/oauth2/v2.0/token?username=username@email.com&password=**********&grant_type=password&scope=openid+fec253ea-0d06-4272-a5e6-b478baeecd70+offline_access&client_id=fec253ea-0d06-4272-a5e6-b478baeecd70&response_type=id_token
     

     

• 1. Send a POST request to retrieve an ID token.

     curl --data '' --request POST 'https://ercotb2c.b2clogin.com/ercotb2c.onmicrosoft.com/B2C_1_PUBAPI-ROPC-FLOW/oauth2/v2.0/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --data 'username=username@email.com' \
     --data '&password=****' \
     --data '&grant_type=password' \
     --data '&scope=openid+fec253ea-0d06-4272-a5e6-b478baeecd70+offline_access' \
     --data '&client_id=fec253ea-0d06-4272-a5e6-b478baeecd70' \
     --data '&response_type=id_token'
     

     {"access_token":"eyJhbGciOiJS......","token_type":"Bearer","expires_in":"3600","refresh_token":"eyJraWQiOiJ.......","id_token":"eyJhbGciOiJSUzI......"}
     

• 1. Send a POST request to retrieve an ID token.

     const USERNAME = "username";
     const PASSWORD = "password";
     
     const RESOURCE = "https://ercotb2c.b2clogin.com/ercotb2c.onmicrosoft.com/B2C_1_PUBAPI-ROPC-FLOW/oauth2/v2.0/token"
         + "?username=" + USERNAME
         + "&password=" + PASSWORD
         + "&grant_type=password"
         + "&scope=openid+fec253ea-0d06-4272-a5e6-b478baeecd70+offline_access"
         + "&client_id=fec253ea-0d06-4272-a5e6-b478baeecd70"
         + "&response_type=id_token";
     
     const OPTIONS = {
         method: 'POST'
     };
     
     fetch(RESOURCE, OPTIONS)
     .then(response => response.json())
     .then(result => console.log(result.id_token))
     .catch(error => console.log('error', error));
     

     {
         "access_token": "eyJhbGciOiJS......",
         "token_type": "Bearer",
         "expires_in": "3600",
         "refresh_token": "eyJraWQiOiJ......",
         "id_token": "eyJhbGciOiJSUzI......"
     }
     

• 1. Send a POST request to retrieve an ID token.

     final String USERNAME = "username";
     final String PASSWORD = "password";
     final String SUBSCRIPTION_KEY = "subscription-key";
     
     HttpClient httpClient = HttpClient.newHttpClient();
     
     final String AUTH_URI = "https://ercotb2c.b2clogin.com/ercotb2c.onmicrosoft.com/B2C_1_PUBAPI-ROPC-FLOW/oauth2/v2.0/token"
     + "?username=" + USERNAME
     + "&password=" + PASSWORD
     + "&grant_type=password"
     + "&scope=openid+fec253ea-0d06-4272-a5e6-b478baeecd70+offline_access"
     + "&client_id=fec253ea-0d06-4272-a5e6-b478baeecd70"
     + "&response_type=id_token";
     
     HttpRequest request = HttpRequest.newBuilder()
     .uri(URI.create(AUTH_URI))
     .POST(HttpRequest.BodyPublishers.noBody())
     .build();
     
     try {
         // Sign in/Authenticate
         HttpResponse<String> response = httpClient.send(request, HttpResponse.BodyHandlers.ofString());
         String json = response.body(); // Retrieve response body from authorization request
     
         // Parse response for access token:
         String[] data = json.split(".");
         String bearerToken = null;
         for (String str : data) {
             String[] dataPoints = str.split(":");
             if (dataPoints[0].contains("access_token")) {
                 bearerToken = dataPoints[1].substring(1, dataPoints[1].length()-1);
                 break;
             }
         }
     
         // Ensure that you retrieved the bearer token
         if (bearerToken == null) {
             throw new Exception("Unable to authorize user.");
         }
         System.out.println(bearerToken);
     }
     

     {
         "access_token": "eyJhbGciOiJS......",
         "token_type": "Bearer",
         "expires_in": "3600",
         "refresh_token": "eyJraWQiOiJ......",
         "id_token": "eyJhbGciOiJSUzI......"
     }
     

• 1. Send a POST request to retrieve an ID token.

     import requests
     
     USERNAME = "username"
     PASSWORD = "password"
     SUBSCRIPTION_KEY = "subscription"
     
     # Authorization URL for signing into ERCOT Public API account
     AUTH_URL = "https://ercotb2c.b2clogin.com/ercotb2c.onmicrosoft.com/B2C_1_PUBAPI-ROPC-FLOW/oauth2/v2.0/token\
     ?username={username}\
     &password={password}\
     &grant_type=password\
     &scope=openid+fec253ea-0d06-4272-a5e6-b478baeecd70+offline_access\
     &client_id=fec253ea-0d06-4272-a5e6-b478baeecd70\
     &response_type=id_token"
     
     # Sign In/Authenticate
     auth_response = requests.post(AUTH_URL.format(username = USERNAME, password=PASSWORD))
     
     # Retrieve access token
     access_token = auth_response.json().get("access_token")
     

     {
         "access_token": "eyJhbGciOiJS......",
         "token_type": "Bearer",
         "expires_in": "3600",
         "refresh_token": "eyJraWQiOiJ......",
         "id_token": "eyJhbGciOiJSUzI......"
     }
     

---