Skip to main content

Step 2: Generating Grant Token

Redirect to the following authorization URL with the given params

https://accounts.zoho.com/oauth/v2/auth?

ParameterDescription
scope *

SCOPE for which the token to be generated. Multiple scopes can be given which has to be separated by commas.

 Ex : zohobackstage.event.CREATE

for more details, refer to List of scopes available in Zoho Backstage

client_id *Client ID obtained during Client Registration
stateAn opaque string that is round-tripped in the protocol; ie., whatever value given to this will be passed back to you.
response_type *code
redirect_uri *One of the redirect URI given in above step. This param should be same redirect url mentioned while registering the Client
access_typeThe allowed values are offline and online. The online access_type gives your application only the access_token which is valid for one hour. The offline access_type will give the application an access_token as well as a refresh_token. By default it is taken as online
prompt

Prompts for user consent each time your app tries to access user credentials. 

Ex:Consent

Note: Fields with asterisks(*) are mandatory.

Note:The API URLs in this section should be modified based on your domain.

Upon making this request, you will be shown a user consent page.

When you click "Accept", Zoho will redirect you to the given redirect_uri with the code and state parameters. This code value is mandatory to obtain the access token in the next step, and it is valid for 60 seconds.

If you click "Deny", the server will return an error."

Copiedhttps://accounts.zoho.com/oauth/v2/auth?scope=zohobackstage.portal.READ,zohobackstage.portal.CREATE,zohobackstage.event.CREATE&client_id=1000.0SRSxxxxxxxxxxxxxxxxxxxx239V&state=testing&response_type=code&redirect_uri=http://backstage.zoho.com/&access_type=offline