Authorization
Use OAuth to easily and securely call Indeed APIs.
Overview
Indeed uses OAuth 2.0 to authorize your app and authenticate API calls. The types of OAuth that you can use are:
-
2-legged OAuth (client credentials flow): Authorize your app to act on behalf of itself.
-
3-legged OAuth (authorization code flow): Authorize your app to get consent from a user to act on behalf of them and their associated employer accounts.
When you register your app, Indeed sets it up with the correct type of OAuth for your use case.
As part of onboarding, you ask Indeed to register your app with your Indeed account. Indeed grants your account access to Partner Console, which you use to access your OAuth credentials: a client ID and secret. When you register your app, Indeed sets it up with the correct type of OAuth for your use case. For more information, see Credentials.
Approved partners use Partner Console to access testing tools and manage integrations, credentials, and associated APIs and services. For 3-legged OAuth apps, approved partners also use Partner Console to configure redirect URLs and view what the OAuth consent screen looks like to users.
To authorize your app to call Indeed APIs, see Register your app and call APIs.
Start here
| Topic | Description |
|---|---|
| Register your app and call APIs | Register your app to authorize its access to resources, then call Indeed APIs. |
| Client credentials flow (2-legged OAuth) | Authorize your app to act on behalf of itself. |
| Authorization code flow (3-legged OAuth) | Authorize your app to act on behalf of Indeed users and those users' associated employers. |
| Log in with Indeed | Use Indeed-provided images to create Log in with Indeed buttons. |
| OAuth glossary | Descriptions for common OAuth terms. |
| OAuth reference | HTTP request headers, scopes, and API endpoints with request parameters and response fields. |
| Troubleshoot OAuth errors | Troubleshoot OAuth errors. |