Hi Zoom team,
I’d like to confirm my understanding around TK, ZAK, and OBF tokens for our use case.
Our system has two sides:
Our clients (hosts) create webinars using their own Zoom accounts and authorize our app via the Zoom Marketplace.
End users (attendees) join those webinars through our web or mobile applications.
Currently, end users join webinars using the TK (Join Token).
The host always starts the webinar using the Zoom client, not from our application. We do not perform recording or note-taking from our application.
In this scenario, we want to understand whether we need to use ZAK or OBF tokens when interacting with webinars that belong to an external Zoom account.
My current understanding is:
• OBF token:
Requires running a bot/service that joins the webinar using the OBF token.
A Zoom user from the client’s account (who authorized our app in the Marketplace) must be present in the meeting (either via Zoom client or our app).
• ZAK token:
The authorized Zoom user must join the webinar from our application using a ZAK token.
No separate bot is required.
After the authorized user joins, other participants can join.
If the authorized user leaves, the webinar ends.
Could you please confirm if this understanding is correct, or clarify the recommended approach for our use case?
Thank you.