Overview
Overview of the authentication process for the Smokeball API
Your OAuth2 client_id and client_secret credentials can be found in the App Details section of the Developer Console.
There are two OAuth 2.0 flows used to authenticate with the API based on your integration scenario:
-
Authorization Code Grant - This is used to connect to the Smokeball API as an authenticated Smokeball user. The Smokeball user will authenticate using their credentials and an authorization code is passed back to your supplied redirect uri(s) which you can then exchange for an access_token.
-
Client Credentials Grant - This flow is used when connecting to the Smokeball API for server-to-server requests outside the context of a Smokeball user.
Additionally, we provide a Logout Endpoint for securely ending user sessions.