Request Authentication

Webex Meetings XML API requests require user authentication as part of the securityContext. Webex host and admin accounts always have a username, also known as a Webex ID. Webex supports traditional username/password authentication and OAuth 2.0.

Password Authentication

The simplest authenticaiton method is password. For this method, username and password are included in plain text right in the securityContext. Password authentication is not available on Webex sites that have configured SAML SSO for authentication, developers must support OAuth for those sites.

<securityContext>
    <webExID>username</webExID>
    <password>password</password>
    <siteName>webex_subdomain</siteName>
</securityContext>

OAuth

OAuth allows your application to function without storing user passwords. This method is necessary for sites that are configured to use SSO, because these sites have no user passwords, and optional for all other sites. With this method, an end user authorizes your app to access their personal account and act on their behalf. This results in an access token that can be used for API authenticaiton. More information about this option can be found in the Integrations guide that can be found by visiting http://www.webexdeveloper.com and clicking on the Docs link. This authentication method supports all Webex site configurations, but can only authenticate as the current end user.

<securityContext>
    <webExID>username</webExID>
    <webExAccessToken>token</webExAccessToken>
    <siteName>webex_subdomain</siteName>
</securityContext>