Help me to migrate from JWT to OAuth using PHP Curl

Dora_Reddy · March 16, 2023, 12:52pm

Hello All,

We have integrated zoom api with jwt authentication.

As JWT is deprecating soon, need to migrate it Server-to-Server OAuth or an OAuth app.

From the above 2 (Server-to-Server OAuth or an OAuth app) which one is easy and safe in coding point of view.

Someone please share code or guide for migrating

Thanks

gianni.zoom · March 17, 2023, 2:03am

Hi @Dora_Reddy ,

Server-to-Server OAuth app is the most closely related to JWT in terms of access and purpose.

To get started, take a look at our Postman Workspace for guidance on Server-to-Server OAuth: Create meeting link on behalf of external users by hosting OAuth Account Level APP - #3 by hmshah.1984

You can use Postman’s code snippet feature for sample code:

Dora_Reddy · March 20, 2023, 3:12pm

Hello @gianni.zoom Thanks for the details.

When using jwt authentication, Only JWT token enough for all API calls.

So how can i need to change my existing code below with OAuth Please help

            $request_url = 'https://api.zoom.us/v2/users/'.$host_id.'/meetings';
        $headers = array(  "authorization: Bearer ".$this->zoom_jwt_token,
                           "content-type: application/json"
                        ); 
	$ch = curl_init();
	curl_setopt($ch, CURLOPT_URL, $request_url);
	curl_setopt($ch, CURLOPT_RETURNTRANSFER,true);
	curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); 
	curl_setopt($ch, CURLOPT_HTTP_VERSION,CURL_HTTP_VERSION_1_1);
	curl_setopt($ch, CURLOPT_CUSTOMREQUEST,$customrequest);
	if(isset($data) && !empty($data))
	{
	$postFields = json_encode($data);
	curl_setopt($ch, CURLOPT_POSTFIELDS, $postFields);
	}
	curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); 
	$response = curl_exec($ch);

gianni.zoom · March 21, 2023, 6:07am

Do you mean only JWT allows you to access all API endpoints? Or that JWT does not expire?

For Server-to-Server OAuth, you can access all the endpoints with the correct scopes. As far as token expiry, Server-to-Server OAuth expires after 1 hour and you need to generate a new token unlike with JWT where you can set the expiration for as long as you want.

Dora_Reddy · March 21, 2023, 3:14pm

@gianni.zoom
We actually set JWT for longer expiration date and save it in DB and used the JWT token for all API calls.

So for Server-to-Server OAuth, Is it ok to set high-level scope for App and use it for all API end points?

Can you please provide me php code for create meeting API with Server-to-Server OAuth.

gianni.zoom · March 21, 2023, 4:35pm

Yes this is okay.

Click on the code icon and scroll for PHP snippet: Postman

Dora_Reddy · April 13, 2023, 1:39pm

Thanks for the help. I’m successfully migrated from JWT to Server-to-Server OAuth.

system · April 16, 2024, 5:16am

This topic was automatically closed 368 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How do I get a list of future webinars? Webinars	3	539	May 11, 2023
Migration from JWT App API and Webhooks	3	598	March 13, 2024
How to choose JWT or OAuth authentication for Zoom Meetings integration to My Website? API and Webhooks	10	3658	August 21, 2020
JWT app type migration Issues Web	7	409	May 17, 2023
Do we need to migrate JWT in this case? API and Webhooks api	4	275	May 6, 2024

Help me to migrate from JWT to OAuth using PHP Curl

Related Topics