Getting started

Formalities

To start using our API, you must make a formal agreement with us.
When that is done, we will issue an API key. You will use the API key to get an OAuth2 token, which you will use to authenticate your API calls.
The API key consists of:

• Client key
• Client secret: Do not share this secret in any communication with us or any other parties.
• A domain: Only used for authentication.
• Admin User Id: Call the API on behalf of this user.

These are used for our OAuth 2 flow. Read more about this in our authentication section.

We will also give you:

• Client Name: To be used in the header of all API calls.

ExorLive domains

Depending on how you are planning to use our API you might have to whitelist our domains.

• auth.exorlive.com - Our authentication server in charge of OAuth2.0.
• www.exorlive.com - Our company's main webpage.
• exorlive.com/ - Appdomain / Base url for all methods.
• exorlive.com/m/ - ExorLive Go.
• exorlive.com/assistant/ - ExorLive Assistant.
• exorlive.com/app/ - The main ExorLive application, for instructors.

How to call the API methods

Each call expects two values in the HTTP header:

• "ExorLive-Client": The "client name" to be agreed upon with ExorLive AS.
• "Authorization": "Bearer accesstoken"