Token Generation

According to Document:

To host a scheduled meeting with a non-login user, you will need to retrieve the following three values from the REST API:

  • User_ID
  • Zoom_Token
  • Zoom_Access_Token(ZAK)

For User_ID, you can pass your email address or you can retrieve from REST API by sending a GET request to

Question is When we are using a non-loing user for start or join meeting then which email we should use for user_ID to create these tokens?

Do we use our Zoom Developer Account email with which we have created SDK app and Auth APP ?

iOS 13.2

Zoom SDK version : 5.0.1 (24433.0616)

Getting Following error in Generting TOken

code = 124;
message = “The Token’s Signature resulted invalid when verified using the Algorithm: HmacSHA256”;

Hey @iosjamesanderson

Thanks for using the dev forum!

Unfortunately, that documentation is no longer accurate and we are working to have it updated soon. I know that is confusing and frustrating. We apologize for that!

To use the meeting functionalities as a Non-Login user you do not need to use a Zoom_Token. You do however, need a ZAK and a UserID. The purpose of the ZAK is to authenticate a user (which would be the person who is using your app) on behalf of the API user (which would be you, the developer). When you are requesting a ZAK, you would provide the API user’s email. The ZAK that is obtained provides verification to Zoom that you, the API user, is giving your application user permission to join/host meetings. In other words, yes, you use your Zoom Developer Account email with which you have created the SDK app.

When requesting the ZAK, you should use this endpoint: Developer Account Email Here/token?type=zak&access_token=API JWT here
The last parameter in the endpoint above is your API JWT.

When you log into Zoom Marketplace using your developer account, then click “Build an App”, you will be taken to a page that looks like this:

The tile that says “SDK” has your SDK Key and Secret that you have used to initialize the SDK in your app. This key and secret is not what you use to generate a JWT for that endpoint.

The tile that says “JWT” contains your API Key, API Secret, and a JWT. That JWT is what you provide in the final parameter of that endpoint in order to retrieve a ZAK. Note: use that JWT to test that you can successfully obtain a ZAK, but in production you will need to create your own JWT using the API Key and Secret.

Let me know if you have any more questions or concerns.

i am really confused , i can’t understand these concepts
JWT /token/userID

Hey @mohammed.adel.sorour,

The JWT is a token that allows for authentication of the developer.
The ZAK is a token that allows a developer to authenticate a user for a meeting without the user logging in.
UserID is a unique identifier that represents a user.

Please let me know if you have any other questions.