OAuth apps FAQs
We currently support this feature only in the US1 region.
OAuth apps are available to all accounts at no additional cost.
Users with the Owner, Administrator, Developer or Account API Access Admin role can access account-level OAuth apps.
Users with the Organization Owner or Organization Admin role will be able to access Organization OAuth apps.
Yes. If a new access token is generated, the previous access token will continue to work until it expires.
There will be no impact on the OAuth app and the credentials will still work.
Immediately rotate the secret with the grace period set to 0, or delete the app. This invalidates the previous credentials and access tokens.
Yes, this feature is available for subaccounts. Account-level OAuth apps only work for the account they were created in, not for its subaccounts. Create a separate OAuth app for each subaccount that needs an account-level OAuth app.
Access tokens are valid for the Token expiration time configured on your OAuth app (between 1 minute and 30 days, defaulting to 1 hour). Once an access token expires, API calls using it will return a 401 Unauthorized response.
To get a new access token, follow these steps:
- For Client Credentials apps, send a new token request with your Client ID and Client Secret.
- For Authorization Code apps, use the refresh token returned with the original access token to request a new one without prompting the user to re-authorize. See OAuth Token API for details.