Authentication Flow

In order to interact with Gooru's API, you must first have API access credentials , a client_id and a client_secret. These credentials must be obtained directly from Gooru staff.


Header authentication

The authentication (access token or anonymous access token) is done in the header of each request which MUST contain the access token.

Once in possession with a client_id and client_key, you can either obtain an anonymous access token or proceed to authenticate with any existing user credentials. This returned token should then be used and is required in the Header of almost all API calls.

Some API calls (mostly write operations) will require actual user authenticated access token, not just anonymous access token.