Firefly III features a JSON API.

Please visit the dedicated Swagger documentation where you can read and try the API.


The API uses the OAuth2 workflow. You need to create OAuth2 Clients in your profile when logged in.

Your OAuth2 Clients as they would be visible in your profile

These clients have a secret (visible in the screenshot). The secret can be exchanged for an access token. The access token is used to access the API.

Firefly III offers the following end points that can be used in applications that support the OAuth2 workflow, such as Postman.

  • /oauth/authorize

  • /oauth/token

Here is the OAuth2 screen from Postman.

Here you see how Postman would use the secret to get an access token. What you can build in OAuth2 is out of the scope of this document.