B

Ballpark GraphQL API

GraphQL discovered

Details
Endpoint
https://api.ballparkhq.com/graphql/
Spec
introspection
Docs
https://ballparkhq.com/developers/get-started
Authentication
Personal access token bearer discovered Get token ↗
Authorization: Bearer <credential>

Sign in to your Ballpark account, then open Personal access token generator and generate a token for local development or internal scripts. Send it as Authorization: Bearer <token>. The docs state these tokens do not expire, so revoke them from your account settings if compromised.

OAuth 2.0 client oauth2 discovered Set up OAuth ↗
Authorization: Bearer <credential>

Register an application at Ballpark OAuth applications. Ballpark supports OAuth 2.0 with optional PKCE for native/client-side apps. Use the authorization_code flow for confidential clients, or authorization_code + PKCE for public/native apps that need refresh tokens. Tokens are then used as Authorization: Bearer <access_token> when calling the API.