> ## Documentation Index
> Fetch the complete documentation index at: https://docs.mileapp.dev/llms.txt
> Use this file to discover all available pages before exploring further.

# Resolve Short Token

> Exchange a short token for the original bearer token. This endpoint does not require authentication (the short token itself is the credential). The short token must be valid and not expired (tokens expire after 5 minutes).



## OpenAPI

````yaml /openapi/public/openapi-tools.json post /short-token/resolve
openapi: 3.0.3
info:
  title: MileApp Tools API
  version: 3.0.0
  description: Utility endpoints for secure URL embedding and token management.
  contact:
    name: MileApp Support
    email: support@mile.app
servers:
  - url: https://apiweb.mile.app/api/v3
    description: Production
security:
  - bearerAuth: []
tags:
  - name: Short Token
    description: >-
      Generate and resolve short-lived tokens for secure URL parameter
      embedding. Replaces direct bearer-token embedding to prevent token
      exposure in logs, browser history, and external service trails.
paths:
  /short-token/resolve:
    post:
      tags:
        - Short Token
      summary: Resolve Short Token
      description: >-
        Exchange a short token for the original bearer token. This endpoint does
        not require authentication (the short token itself is the credential).
        The short token must be valid and not expired (tokens expire after 5
        minutes).
      operationId: resolveShortToken
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/short-token-resolve-request'
        required: true
      responses:
        '200':
          description: Success
          content:
            application/json:
              schema:
                type: object
                properties:
                  status:
                    description: Status of response.
                    type: boolean
                  message:
                    description: Message of API response.
                    type: string
                  data:
                    description: Resolved token data.
                    type: object
                    properties:
                      bearerToken:
                        description: The original bearer token.
                        type: string
                      userId:
                        description: The user ID associated with the token.
                        type: string
                      organizationId:
                        description: The organization ID associated with the token.
                        type: string
                example:
                  status: true
                  message: Success.
                  data:
                    bearerToken: eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9...
                    userId: 6804ef87fff429d06900a937
                    organizationId: 6804ef87fff429d06900a932
        '400':
          description: Bad Request - Invalid or expired short token
          content:
            application/json:
              schema:
                type: object
                properties:
                  status:
                    description: Status of response.
                    type: boolean
                  message:
                    description: Message of API response.
                    type: string
                example:
                  status: false
                  message: Short token is invalid or expired
      deprecated: false
      security: []
      x-code-samples:
        - lang: cURL
          source: |-
            curl -X POST "https://apiweb.mile.app/api/v3/short-token/resolve" \
              -H "Content-Type: application/json" \
              -d '{"shortToken": "abc123def456ghi789"}'
components:
  schemas:
    short-token-resolve-request:
      example:
        shortToken: abc123def456ghi789
      type: object
      properties:
        shortToken:
          type: string
          description: >-
            The short token string to resolve back to a bearer token.
            **Example:** `abc123def456ghi789`
      required:
        - shortToken
  securitySchemes:
    bearerAuth:
      type: http
      scheme: bearer
      bearerFormat: JWT

````