API Clients
What is an API Client?
An API Client is your gateway to KORE's APIs. It is an application that holds all the settings and security of your integration with KORE, giving you the flexibility to be as open or restrictive as possible.
Viewing API Clients
You can see all of the API clients associated with your account by going to Client Management
in the developer portal.
If your client is locked, you will see a Lock
icon beside your Client Name
Any user who has access to the developer portal can view the clients, but only those with the right roles and permissions can create or modify clients.
Creating a Client
To access any KORE API, you must create an API Client, which you can do in Client Management.
Your API Client will be enabled by default, which you can change later.
Client Owner
The user who creates the client is assigned theClient Owner
, which gives them complete control of the API Client.
Locking the client
If you wish to restrict who can make edits to your API client, you have the option to Lock
your client either at the time of creation or after.
If locked, the only users who can make edits are
Account Owner
Account Admins
Client Owner
Account
When you create a client, the account you are currently in identifies which account the Client targets.
If you have child accounts, you will need to switch to the account and create a client for that account
Token Expiry Time
When you create an API client, you are given API Credentials, which you use to obtain a token. This token will expire, which you can configure when creating your API Client.
For more details, review our page on how our APIs are authorized.
When selecting an expiry time for your token, consult your organization about their policies.
Client Type
There are two types of clients. Your role defines the type of API Client you can create.
Admin
It grants your client access to global and product resources to scope your client.
Users with the role of Account Owner
or Account Admin
can create an admin client.
Standard
It grants your client access to product resources so you can scope your client.
Users with the role of Account Owner
, Account Admin
or Developer
can create a standard client.
Client Scopes
Each API Client has scopes which control which resources the client has access to. There are two types of scopes, which the client type unlocks.
Global Resources
These resources grant you access to resources to manage global resources for your account.
For example, one type of global resource is API Client, which, if selected, allows your API Client to manage your API Clients through an API.
Products
These are the products that, if selected, allow your API Client to make API calls against the product.
Edit a Client
You can edit the client by clicking on the client name then use the drop down for the list the actions you can perform on the API Client.
When changing scopes of an API client, remember to re-authorize your client using your Client ID/Secret to obtain a new token with the new scopes.
OAuth tokens issued for clients are tied to the specific scopes defined when the token is generated. Your previous tokens, if they haven't already expired, will still be authorized but with the scopes defined at the time of their creation.
The properties that requires re-authorizing to obtain a new updated token are:
Token Expiry Time
Scopes
Client Type
Global Resources
Products
Enable/Disable
An API Client can be enabled or disabled.
Disabling a client temporarily disables access to any resources. When re-enabled, the same Client Credentials can continue to work. Your API Credentials will never change.
An API client is enabled by default when you create one.
Renew Key
You can renew your keys if your API Client credentials have been compromised. Doing this invalidates your existing credentials, presenting you with new ones.
Your prior token will be invalid, requiring you to obtain a new one.
This operation can not be undone.
Transfer Ownership
If the API Client owner no longer wishes to own the resource, they can transfer ownership to another user with access to the developer portal.
Delete
You can delete the API client, invalidating all existing tokens and invalidating your current API Client Credentials.
This operation can not be undone.
Last updated