Please feel free to create an issue if you have any questions not answered by this documentation.
Our API uses the OAuth 2.0 Client Credentials grant type, which is designed for server-to-server authorisation. This will allow you to make authorised requests to ClickView servers and resources.
Before you begin, you should have obtained the following from ClickView:
Please keep your Client Secret confidential to protect the security of your API access. Client Secrets are similar to passwords and should be treated with care. Carelessly exposing your Client Secret will result in ClickView revoking access to our API.
To obtain an Access Token, make a POST request to the token endpoint provided by the API.
Resource URL
POST https://auth.clickviewapp.com/connect/token
Headers
|Name|Required|Description|
|—|—|—|
|Content-Type|required|Specifies the type of content in the HTTP request body. In this case, it’s set to application/x-www-form-urlencoded to indicate that the data is URL-encoded form data.|
Body
|Name|Required|Description|
|—|—|—|
|grant_type|required|Specifies the grant type for the authentication. In this case, it should be set to client_credentials.|
| client_id|required|Your client’s unique identifier. This is required for client authentication.|
| client_secret|required|Your client’s secret key. This is required for client authentication and should be kept confidential.|
|scope|required|Specifies the scope of access for the requested token. In this example, it is set to smartembed.viewkey.|
Example usage
Here’s an example using curl:
curl --request POST \
--url https://auth.clickviewapp.com/connect/token \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data grant_type=client_credentials \
--data client_id=YOUR_CLIENT_ID \
--data client_secret=YOUR_CLIENT_SECRET \
--data scope=smartembed.viewkey
Replace YOUR_CLIENT_ID and YOUR_CLIENT_SECRET with your actual Client ID and Client Secret.
A successful response will return a JSON object containing the access_token field, which you will use for authentication in subsequent API requests. Here is an example of a successful JSON response:
{
"access_token": "eyJz93a...k4laUWw",
"token_type": "Bearer",
"expires_in": 86400,
"scope": "smartembed.viewkey"
}
access_token: The token that must be used in API requests to authenticate.token_type: Indicates the type of token returned. In this case, it is a bearer token.expires_in: The number of seconds until the token expires (86400 means the token is valid for 24 hours).scope: Represents the permissions granted to the access token.With the access token, you can now make authenticated requests to the API. Include the access token in the Authorization header of your HTTP request like so:
curl -request GET \
https://integrations.clickviewapp.com/api/v1/example \
-header 'Authorization: Bearer YOUR_ACCESS_TOKEN'
Replace YOUR_ACCESS_TOKEN with the actual token you received from the token endpoint.
More information on using your access token is provided in Video Playback.
If the request for an access token fails, the server will return an error payload. For example:
{
"error": "invalid_client",
"error_description": "Client authentication failed."
}
Refer to the OAuth 2.0 Specification for a detailed list of potential error codes and their meanings.
After obtaining your access token, you may proceed to use it to request view keys. Please see Video Playback for information on how to use your access token.