Hi @billyf,
First, when using Organizations, I suggest using the Authorization Code Grant to get tokens.
In this case, you will need to Call the Authorization Code Flow with the organization query parameter. To begin the login transaction, start by calling the /authorize request:
https://YOUR_DOMAIN/authorize?
response_type=code&
client_id=YOUR_CLIENT_ID&
redirect_uri=https://YOUR_APP/callback&
scope=SCOPE&
state=STATE&
organization=ORG_ID
Then exchange the code for a token by calling the /oauth/token endpoint:
curl --request POST \
--url 'https://YOUR_DOMAIN/oauth/token' \
--header 'content-type: application/x-www-form-urlencoded' \
--data grant_type=authorization_code \
--data 'client_id=YOUR_CLIENT_ID' \
--data client_secret=YOUR_CLIENT_SECRET \
--data code=YOUR_AUTHORIZATION_CODE \
--data 'redirect_uri=https://YOUR_APP/callback'
Once that is complete, you will have a valid access token.
Lastly, you may find our Work with Tokens and Organizations documentation useful.
Please let me know if you have any additional questions. I’d be happy to help.
Thank you.