Requesting Access

Requesting Authorization for Access

After you have created your application, you can now request the user for permission to access data using OAuth2.

Your application should redirect users to the ClassLink Authorization endpoint.

As part of the request, you will include several required parameters and an optional parameter outlined below.

Parameter NameDescriptionRequired
scopeThe data you are requesting access to. Available scope options are: "email", "profile","oneroster", "openid", "full"Required
client_idThe client_id is a string obtained from the ClassLink Developer Console.Required
redirect_uriDetermines where the response is sent, it must match the redirect_uri assigned to your application in the Developer Console.Required
response_typeUse code for a Basic flow.Required
stateThe state parameter is an opaque value we will return to you in the response that should match the value sent to us.Optional, but strongly recommended

Below is a sample request.

After you redirect users to the ClassLink Authorization endpoint, the end user will be prompted to consent access to the scopes requested.


If the user does not accept your request for access, you will receive an error parameter in your redirect_uri with access_denied.

After the user consents to access, the browser will be redirected back to your redirect_uri with a response code and state if it was sent in the original request.