---
name: ramp-install-auth
description: "Ramp install auth \u2014 corporate card and expense management API integration.\n\
  Use when working with Ramp for card management, expenses, or accounting sync.\n\
  Trigger with phrases like \"ramp install auth\", \"ramp-install-auth\", \"corporate\
  \ card API\".\n"
allowed-tools: Read, Write, Edit, Bash(npm:*), Bash(curl:*), Grep
version: 2.0.0
license: MIT
author: Jeremy Longshore <jeremy@intentsolutions.io>
tags:
- saas
- ramp
- fintech
- expenses
- corporate-cards
compatibility: Designed for Claude Code, also compatible with Codex and OpenClaw
---
# Ramp Install Auth

## Overview
Set up Ramp API authentication using OAuth2 client credentials flow with sandbox and production environments.

## Prerequisites
- Ramp account with API access
- Client ID and Client Secret from Ramp Dashboard

## Instructions

### Step 1: Get API Credentials
```text
1. Go to Ramp Dashboard > Settings > Developer
2. Create new API application
3. Copy Client ID and Client Secret
4. Note: Sandbox URL is sandbox-api.ramp.com, Production is api.ramp.com
```

### Step 2: Configure Environment
```bash
# .env
RAMP_CLIENT_ID=your_client_id
RAMP_CLIENT_SECRET=your_client_secret
RAMP_BASE_URL=https://sandbox-api.ramp.com/v1  # Switch to api.ramp.com for prod
```

### Step 3: Obtain Access Token
```python
import os, requests

token_resp = requests.post("https://sandbox-api.ramp.com/v1/token", data={
    "grant_type": "client_credentials",
    "client_id": os.environ["RAMP_CLIENT_ID"],
    "client_secret": os.environ["RAMP_CLIENT_SECRET"],
})
token_resp.raise_for_status()
access_token = token_resp.json()["access_token"]
print(f"Token obtained (expires in {token_resp.json()['expires_in']}s)")
```

### Step 4: Verify Connection
```python
headers = {"Authorization": f"Bearer {access_token}"}
resp = requests.get(f"{os.environ['RAMP_BASE_URL']}/cards", headers=headers)
resp.raise_for_status()
cards = resp.json()["data"]
print(f"Connected! Found {len(cards)} cards")
```

## Output
- OAuth2 access token obtained
- API connectivity verified with card listing

## Error Handling
| Error | Cause | Solution |
|-------|-------|----------|
| `invalid_client` | Wrong credentials | Verify client_id/secret in Dashboard |
| `401 Unauthorized` | Token expired | Re-authenticate (tokens expire in 1 hour) |
| Wrong environment | Sandbox vs prod URL | Check RAMP_BASE_URL |

## Resources
- [Ramp Authorization](https://docs.ramp.com/developer-api/v1/authorization)
- [Getting Started](https://docs.ramp.com/developer-api/v1/guides/getting-started)

## Next Steps
First API call: `ramp-hello-world`