Create an OAuth App

OAuth 2.0 is the industry-standard authorization protocol that allows applications to obtain requested access to user accounts over the HTTP service with the user’s approval.

By creating an OAuth app on the Zoom App Marketplace, you can securely integrate with Zoom APIs and access users’ authorized data using a user-based authentication approach. This app can either be installed and managed across an account by account admins (account-level app) or by users individually (user-managed app).

Tip: If you’re looking to build an app that provides server-to-server interaction with Zoom APIs to manage your account, you may want to build an app using JSON Web Tokens (JWT) instead.

Register Your App

To register your app, visit the Zoom App Marketplace and click on the Develop option in the dropdown on the top-right corner and select Build App. A page with various app types will be displayed. Select OAuth as the app type and click on Create.

Provide app related information and get client credentials

The windows that follow will ask you to provide a series of information. All fields are required unless otherwise noted. Descriptions of each field are provided below:

App Name: Provide your app’s name here.

App Type: There are two types of OAuth apps in Zoom:

  • Account-level app: Choose this option if your app will manage users across an entire account. An admin will control the installation and management of this app across users in the same account.
  • User-managed app: Choose this option if your app will be installed and authorized by users individually and your app will only have access to the authenticated users’ data.

Generate App Credentials

After you provide the information mentioned above, app credentials (Client ID/ Client Secret) will be automatically generated for your app. You can see development and production credentials. Use development credentials while you are building and testing your app. Use production credentials once you are ready to publish your app on the Marketplace.

Redirect URL for OAuth: Provide a valid and secure URL to which users will be redirected to after they successfully authorize your application.

Whitelist URL: Add all URLs to be whitelisted as Redirect URL for OAuth to achieve improved security. Make sure to include either the entire or the prefix of the URL that you want to whitelist as Redirect URLs for OAuth.

Information

In this page, you must provide some basic information about your app including short and long descriptions about your app that provides users with a general idea about why they would want to use your app. You can select up to three categories that your app falls under.

Additionally, provide preview images of your app (optional), your contact information, helpful links, installation site and a Deauthorization endpoint URL where your app will receive notifications every time a user uninstalls your app.

Set Features

In this page, you can optionally enable some additional features such as Event Subscriptions and Chat subscriptions for your app.

Event Subscriptions are optional features which allow apps to use Zoom’s webhooks to return information when a certain event or action is triggered. In many cases, Event Subscriptions can replace the need for repeated API calls. For example, you might want to add a feature that sends automated notifications to your app every time a User has activated their account or every time a Recording has started.

To explore or add available Event Subscriptions, click the toggle on. Under ‘Event types,’ click Add events. Here you can see the available actions to fit your use case. If applicable, click subscriptions to add and hit ‘Done’.

To utilize Event Subscriptions, you will need to provide a Destination URL to receive incoming events from Zoom. This could be a URL like ‘https://www.yourcompany.com/useradded’, which we explore in our Webhook guide.

Note: This URL must be secured over HTTPS.

Once you enter your Event types and Destination URL, you must click Save.

Set Scopes

Scopes define the API endpoints/methods that your app is allowed to use in order to access specified resources pertaining to your users.

To explore and add available Scopes, click “Add Scopes” and scroll through the available access points your app will need.

Once your app is published, it will only be permitted to access the resources granted to it by its authorized scopes. Each request for a scope will be specifically reviewed by the Zoom Marketplace team on submission.

Local Test

Create local test URLs to test your app locally in your dev environment.

After this step, your app will be registered as a draft app and you will be able to integrate Zoom services and APIs in your application’s code.

Note: Proceed to the Submit page if you would like to make your app publicly available by publishing it through Marketplace or if you would like to request Zoom to make the app shareable within an account for testing purposes.

Submit

Request publication once your development is complete if you intend to publish your app in the Zoom Marketplace. If you do not intend to publish your app, you can still use the Publishable URL that can be generated in the Submit page to activate your production credentials.


Next Steps

For a guide through the process of building a Chatbot app, continue on to our OAuth with Zoom authentication guide, or our OAuth Sample App guide.

Need Support?

The first place to look for help is on our Developer Forum, where Zoom Marketplace Developers can ask questions for public answers.

If you can’t find the answer in the Developer Forum or your request requires sensitive information to be relayed, please email us at developersupport@zoom.us.