Registering an app

To get OAuth tokens to work with Yandex users' data, the developer needs to register their app in Yandex OAuth. After registration, the app will be available for editing in the Yandex OAuth control panel.

Note

Once granted access to user data, the app will appear in the user's Yandex ID, under the list of apps with account access.

Provide complete details about your app so users know who they're allowing to use their data.

The token's lifetime depends on the permissions you request. Adding new permissions might reduce the token's lifetime.

Users can always view and revoke the permissions granted to their account. If they do, the token issued for that account becomes invalid.

App types

There are two types of apps in Yandex OAuth:

  • For user login on a third-party service. These apps transmit user data.

    Authorization apps can be granted no more than three permission groups from Yandex service APIs. The permission group name precedes the : in the permission scope name. For example, the login:info scope belongs to the login group.

    For details on registering an authorization app, see this section.

  • For API access. These apps aren't intended for end users. They interact exclusively with developer data and are designed to request tokens and scopes for Yandex service APIs.

    API access apps cannot get permissions from the login group, but they have no limit on the number of scopes.

    For details on registering an API access app, see this section.

During app registration, select the required app type in the pop-up window.

Screenshot

Warning

Determine your app type before registering. You cannot change the type after registration.

If your app was created before types were introduced, it will continue to operate as before.

Previous
Connecting to API Yandex ID
Next
App for authorization