Hello,
We have an online university which includes support for Zoom meetings using the Meeting Web SDK. Previously, with the JWT app type, our clients would enter their Zoom API Key and Zoom API Secret in our app. Our app would then allow our clients to link a Zoom user with an instructor in our app, and then the instructor was able to press a button to launch the Zoom meeting. After the instructor/host had started the meeting, students could then launch and join the same meeting. The instructor and students did not need to log in or have any other interaction with Zoom in order to use the meeting through our app.
Our app is a web application, it’s a web site. When we set up a new installation for a new client they have the option to enter their Zoom account settings to set all of this up. They don’t ever need to log in to Zoom or give us their credentials while using our app or authorize the app to use their account, or anything like that. They just needed to set up the JWT app on their Zoom account, and then paste the API key and secret into our app one time.
We use some of the REST API calls to do things like list the Zoom users on the account, get a ZAK token, and start a new instant meeting.
In the upgrade documentation, it sounded like I was being pushed towards the Server-to-server OAuth, so that’s the direction we went. After changing the JWT signature algorithm, when I’m trying to join the meeting as the host/instructor, I get a message that the signature failed validation. All of my testing and validating with jwt.io shows that my signature is valid.
I found this thread:
And under #3, the first bullet says that the app must be a Meeting SDK app type, not OAuth. So, now I’m confused.
Is our previous use case still supported by Zoom? If our clients need to go into their Zoom account and set up an app type for our site, and then enter the Zoom account settings in our site (client ID, client secret, etc), then that’s fine, that’s what we were doing previously. If they need to go through other processes to authorize things then I guess I’m just looking for some guidance on what we do from here.
We’re currently using the web SDK 2.16.0.
Thanks