Guides

UCaaS Authentication Overview

Suggest Edits

The OneCloud UCaaS API supports three types of authentication methods, each with its own set of benefits and considerations. These methods are detailed in the following guides:

  1. OAuth2 Based Access and Refresh Tokens
    1. Legacy format also supported by v1 applications.
    2. Timed tokens suitable for various application types and scopes.
    3. Requires a username and password to be granted an access token.
  2. JWT Tokens (JSON Web Tokens)
    1. Timed tokens with parseable token information.
    2. Non-session-based, placing a lighter load on the system.
    3. Particularly well-suited for end-user access to web applications.
  1. API Keys
    1. Suitable for server-to-server applications where the API key can remain secure.
    2. Ideal for applications requiring office manager, reseller, or super user access.
    3. No username and password needed for authentication.
    4. Can be restricted using read-only options and IP restrictions if required.

Each authentication method serves different use cases, providing flexibility and security based on your application's requirements.

Updated about 1 year ago