Steps to create an OAuth App
OAuth app authorization protocol that allows applications to obtain requested access to user accounts over the HTTP service with the user’s approval.
BlueJeans offers another type of authentication method through apps with administrative access. You can use the administrative app token to change the access level for a user, or you can download the recordings. You can use the app to access "Client ID" and "Client Secret", which are more freely accessible and do not pose any security issues for a particular person.
By creating an OAuth app on the BlueJeans page, you can securely integrate with BlueJeans APIs and access users' authorized data using a user-based authentication approach. This app type can be either added and managed across an account-by-account admin (account-level app) or by user enterprise (user-managed app).
This step-by-step guide shows an example of how to create a client authentication key and use REST API to authenticate the app and get an access token.
- Sign in to the BlueJeans Web portal using enterprise administrator access, then navigate to the BlueJeans administrative console.
- Click on the Admin tabAdmin tab that appears on the menu of the page.
- Go to ENTERPRISEAPPS tabENTERPRISEAPPS tab from your admin page.
- Select the OAuth tab to get to the page which manages the Authentication Keys.
Register an Application
- To create the key for a new app, click the Add New APPAdd New APP button on the ENTERPRISE APPS access page.
- In this step, you will need to provide the following app information
- App Name: The app's name field where you need to provide your application name. This is just the title of the key entry in BlueJeans.
- Description: In the "Description" field enter something that will help you and any other Enterprise Administrators recall what the application does.
- App Key: The App Key field should have a name that you can easily associate with your app. It is also one of the OAuth keys that the BlueJeans Enterprise administrator needs to provide to the application administrator.
- App Secret: You can use this field to regenerate the App Secret.
- After completing these fields, the App Key and App SecretApp Key and App Secret will be shown on your enterprise admin console.
OAuth Key
The BlueJeans Admin portal has entries for applications listed in the collection of OAuth applications. There are two fields contained in this entry that you need to copy for your authentication.
- App Key: Pass the App key in the Client ID, when you make an OAuth API call from your application.
- App Secret: The App Secret is a long unique identifier and passed in the Client secret value when you make an OAuth API call from your application.
Authenticating App
You can authenticate your application with the following methods
- Your use case determines the credential type, or if you expect users to log in and enter their BlueJeans account credentials into the application.
- Use the app key and app secret to build your program
To create a session by making API calls to authenticate with BlueJeans using the newly created client key, follow these steps:
- To generate an access token, BlueJeans uses the industry-standard OAuth protocol for authentication.
- When the application is authenticated, BlueJeans returns an access token, which is the software passkey for calling the API.
Once you receive your access token and your enterprise or user ID, you need to save them for the next step. The following is an example of authenticating a user using an administrator username and password.
Curl Command
HTTP Method: POST
URL Path
[POST] https://api.bluejeans.com/oauth2/token#Application
The example URL is as follows
[POST]
"https://api.bluejeans.com/oauth2/token#Application"
-H "accept: application/json"
-H "Content-Type: application/json"
-d "{
"grant_type": "client_credentials",
"client_id": "a_client_app",
"client_secret": "62a01e....8ddc38f04008"
}"
This API is usually called by an application that needs to make an API request. The values for calling parameters namely Client ID and Client Secret are provided within the BlueJeans Enterprise Administration console.
client_id – Use the App Key field of the OAuth entry provided by the BlueJeans administrator as client_id
client_secret – Use the App Secret field of the OAuth entry provided by the BlueJeans administrator as client_secret.
Note
When you call this API, you must set the field, grant_type to equal "client_credentials" (string constant). Grant_type contains the information about the type of grant you are requesting.
HTTP Header
|
Header |
Value |
|---|---|
| Content-Type | application/json |
| Accept | application/json |
Body
{
"grant_type": "client_credentials",
"client_id": "App Key",
"client_secret": "App Secret"
}Response
{
"access_token": "7db84************************2a31",
"expires_in": 3600,
"scope": {
"enterprise": ******,
"partitionName": "*****",
"partition": {
"id": xxx,
"name": "xxx"
}
}
}Access token generated above now can be used to authenticate the other API's. To authenticate, copy the access token and then click on the "Authorize" button or lock button beside any API's.
|
Parameter Name |
Description |
|---|---|
| grant_type | string constant, "client_credentials" to designate the type of authentication method |
| client_ID | Use App Key field provided by the BlueJeans Admin Console. |
| client_secret | Use App Secret field provided BlueJeans Admin Console. |
| access_token | Access token is a time-bound software passkey, which is required to make BlueJeans API call. |
| expires_in |
Provides the duration (in seconds) for the access_token. |
| scope | scope object contains information related to the breadth of access that the access_token can engage. |
| enterprise | this is the enterprise ID number for the unique collection of users for which this OAuth key will authorize |
| partitionName | this is BlueJeans internal reference |
| partition | this is JSON is also BlueJeans internal information. |