To obtain an access token use the below endpoint. There is no need to decode the JWT in your client application. You can treat it as an opaque token and subsequently pass it to each API endpoint.
Your app id. Provided to you during account setup
user’s password. Provided to you during account setup
user’s login name. Provided to you during account setup
Access token that should be passed in API calls
Access token expires in this many seconds
Refresh token that can be used to obtain a new access token before the access token expires
Refresh token expires in this many seconds