"description":"The Selling Partner API for Tokens provides a secure way to access a customers's PII (Personally Identifiable Information). You can call the Tokens API to get a Restricted Data Token (RDT) for one or more restricted resources that you specify. The RDT authorizes you to make subsequent requests to access these restricted resources.",
"description":"Returns a Restricted Data Token (RDT) for one or more restricted resources that you specify. A restricted resource is the HTTP method and path from a restricted operation that returns Personally Identifiable Information (PII). See the Tokens API Use Case Guide for a list of restricted operations. Use the RDT returned here as the access token in subsequent calls to the corresponding restricted operations.\n\nThe path of a restricted resource can be:\n- A specific path containing a seller's order ID, for example ```/orders/v0/orders/902-3159896-1390916/address```. The returned RDT authorizes a subsequent call to the getOrderAddress operation of the Orders API for that specific order only. For example, ```GET /orders/v0/orders/902-3159896-1390916/address```.\n- A generic path that does not contain a seller's order ID, for example```/orders/v0/orders/{orderId}/address```). The returned RDT authorizes subsequent calls to the getOrderAddress operation for *any* of a seller's order IDs. For example, ```GET /orders/v0/orders/902-3159896-1390916/address``` and ```GET /orders/v0/orders/483-3488972-0896720/address```\n\n**Usage Plans:**\n\n| Plan type | Rate (requests per second) | Burst |\n| ---- | ---- | ---- |\n|Default| 1 | 10 |\n|Selling partner specific| Variable | Variable |\n\nThe x-amzn-RateLimit-Limit response header returns the usage plan rate limits that were applied to the requested operation. Rate limits for some selling partners will vary from the default rate and burst shown in the table above. For more information, see \"Usage Plans and Rate Limits\" in the Selling Partner API documentation.",
"parameters":[
{
"in":"body",
"name":"body",
"description":"The restricted data token request details.",
"description":"Indicates that access to the resource is forbidden. Possible reasons include Access Denied, Unauthorized, Expired Token, or Invalid Signature.",
"description":"The request schema for the createRestrictedDataToken operation.",
"type":"object",
"properties":{
"restrictedResources":{
"type":"array",
"description":"A list of restricted resources.\nMaximum: 50",
"items":{
"$ref":"#/definitions/RestrictedResource"
}
}
},
"required":[
"restrictedResources"
]
},
"RestrictedResource":{
"description":"Model of a restricted resource.",
"type":"object",
"required":[
"method",
"path"
],
"properties":{
"method":{
"type":"string",
"description":"The HTTP method used with the restricted resource.",
"enum":[
"GET",
"PUT",
"POST",
"DELETE"
],
"x-docgen-enum-table-extension":[
{
"value":"GET",
"description":"The GET method."
},
{
"value":"PUT",
"description":"The PUT method."
},
{
"value":"POST",
"description":"The POST method."
},
{
"value":"DELETE",
"description":"The DELETE method."
}
]
},
"path":{
"type":"string",
"description":"The path from a restricted operation. This could be:\n\n- A specific path containing a seller's order ID, for example ```/orders/v0/orders/902-3159896-1390916/address```.\n\n- A generic path that does not contain a seller's order ID, for example```/orders/v0/orders/{orderId}/address```)."
}
}
},
"CreateRestrictedDataTokenResponse":{
"type":"object",
"description":"The response schema for the createRestrictedDataToken operation.",
"description":"A Restricted Data Token (RDT). This is a short-lived access token that authorizes you to access the restricted resources that you specified. Pass this value with the x-amz-access-token header when making subsequent calls to these restricted resources.",